pqnet
/ sandboxed-pi.sh
Last active
April 30, 2026 07:41
A script to run a pi coding agent without write access to anything it should not have access to
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/sh | |
| # Setup/troubleshooting: | |
| # - create the localhost/empty image with `podman build . -f <(echo FROM scratch) -t localhost/empty:latest` | |
| # - ensure pi works locally | |
| # - check that all dynamic libraries required by bash and nodejs are in the mounted folder (using ldd), eventually add more | |
| # Tested on ubuntu 24.04 | |
| exec podman run --rm -it --network host \ | |
| --volume /lib64:/lib64:ro \ | |
| --volume /lib:/lib:ro \ | |
| --volume /usr:/usr:ro \ |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| test: main.o counter.o libcounter.so | |
| $(CXX) -fPIC -o test main.o counter.o libcounter.so | |
| main.o: main.cpp | |
| $(CXX) -fPIC -c -o main.o main.cpp | |
| counter.o: counter.cpp | |
| $(CXX) -fPIC -c -o counter.o counter.cpp |