Tree Sandbox - I created a new sandbox tool for Linux

Posted by garywilli@reddit | linux | View on Reddit | 25 comments

I'd like to share my rootless sandbox. I've been having fun making some features which other Linux sandbox tools don't provide.

You’ve used Podman, Firejail, Flatpak, Bubblewrap, ... Tree Sandbox is another rootless Linux sandbox tool. Our tools aren't rivals — they complement each other.

https://github.com/garywill/treesandbox

After much work, I release the 1st beta version.

This is a personal project, no security team. Although, I try my best to cover all security aspects.

Layered structure "containers tree" is one of my original design, which I think is a enhanced security model. I want to hear what you guys think about it.

TS is single-file python script. It talks to Linux kernel directly by libc. No 3rd-party python lib or 3rd-party tool needed during the container building progress.

Details are in GitHub README.

[-]

TiZ_EX1@reddit

Em-dash character spotted. How much of this is vibecoded?

[-]

ColbieSterling@reddit

I used em-dashes all the time long before LLMs. LLMs use them all the time because it is the goddamn correct way to punctuate parenthetical clauses and summaries.

It's not a fucking scarlet letter around a piece of writing that identifies it as AI-generated. AI learned it from people who write English correctly.

[-]

It's not the concept of the em-dash itself that indicates a red flag, it's the em-dash character, which can't be input easily unless you have access to a compose key. And even then, it looks more natural to just chain two dashes together--like this--than to bother getting the actual em-dash.

[-]

ThinDrum@reddit

Two dashes together represents an en-dash, as in "30--40 years old". Use three dashes together for an em-dash.

But, on Linux, the compose key allows you to produce the em-dash character easily — so I wouldn't jump to any conclusions :)

[-]

DramaticProtogen@reddit

Android keyboards have it. —

[-]

ColbieSterling@reddit

Huh. I need to watch for that now. I whenever I see "--" I just assume it is an em-dash character and vice versa. But you're right, a standard English language keyboard doesn't have an emdash character, so even if a writer is correctly using the emdash, they're almost always writing two hyphens. Thank you for pointing this out!

[-]

ThomasterXXL@reddit

Contemporary professional Office Suite word processors have a tendency to auto-format hyphens into em-dashes.
It is strange for em-dashes to pop up in this context (a markdown file written by a techie), however.

[-]

TiZ_EX1@reddit

That is a good point, and I thought about that too, but I'm not sure what percentage of folks are copying text from Word/Writer into Markdown files. I've heard from lots of folks over time that they like using the spelling and grammar checking in those programs, and then taking the text from there into other programs. That said, I imagine most folks are editing Markdown files as plaintext, and many plaintext editors do have spell checking, but not conversion of em-dashes into em-dash characters.

[-]

ThomasterXXL@reddit

"Filesystem: privacy vs size vs convinience" from the first table speaks against any deliberate grammar checking being done.

[-]

ThomasterXXL@reddit

Yeah, that's an interesting tidbit, but on the other hand "A few words cannot cover it all — just a glimpse." is ten billion percent written by A.I.

[-]

ColbieSterling@reddit

Okay . . . prove it. I'm not trying to be combative. I've trying to point out that there is no way for you to know. You think you know, but you don't empirically know that this was written by AI.

I get that we're living in AI nightmare world. But the whole point is that AI passes the Turing Test now. It learned to write from us. The number of times I've been accused of being AI because I use a piece of punctuation correctly is maddening.

[-]

ThomasterXXL@reddit

So you expect me to prove it's AI-phrasing in a way that would hold up in court to win an argument on reddit. Yeah, not gonna happen. To not notice that this clearly came from an AI — I'm worried about your future...

[-]

TheOneTrueTrench@reddit

$ git log --stat | grep '^Date' | wc -l
231
$ git log --stat | grep '^Date' | sort | uniq | wc -l
37
$ git log --stat | grep '^Date' | sort | uniq -c
      1 Date:   Sat Dec 13 10:03:30 2025 +0800
     19 Date:   Sat Dec 13 20:00:00 2025 +0800
      1 Date:   Sat Dec 13 20:02:32 2025 +0800
      1 Date:   Sat Dec 6 04:05:15 2025 +0000
      1 Date:   Sat Dec 6 15:03:55 2025 +0800
      1 Date:   Sat Dec 6 16:01:02 2025 +0800
      1 Date:   Sat Dec 6 16:08:30 2025 +0800
      1 Date:   Sat Dec 6 16:12:58 2025 +0800
      1 Date:   Sat Dec 6 16:14:02 2025 +0800
      1 Date:   Sat Dec 6 16:16:43 2025 +0800
      1 Date:   Sat Dec 6 16:17:04 2025 +0800
      1 Date:   Sat Dec 6 16:23:50 2025 +0800
      1 Date:   Sat Dec 6 16:24:25 2025 +0800
      1 Date:   Sat Dec 6 18:14:47 2025 +0800
      1 Date:   Sat Dec 6 18:33:01 2025 +0800
      1 Date:   Sat Dec 6 18:33:27 2025 +0800
      1 Date:   Sat Dec 6 18:34:29 2025 +0800
      1 Date:   Sat Dec 6 18:50:04 2025 +0800
      6 Date:   Sat Feb 28 20:40:10 2026 +0800
      1 Date:   Sat Mar 21 10:00:49 2026 +0800
      1 Date:   Sat Mar 21 10:20:40 2026 +0800
      1 Date:   Sat Mar 21 17:12:24 2026 +0800
      1 Date:   Sat Mar 21 17:21:45 2026 +0800
      1 Date:   Sun Apr 12 09:00:00 2026 +0800
     21 Date:   Sun Dec 7 10:00:00 2025 +0800
      1 Date:   Sun Dec 7 12:18:44 2025 +0800
      1 Date:   Sun Dec 7 15:01:17 2025 +0800
      1 Date:   Sun Dec 7 15:44:23 2025 +0800
      1 Date:   Sun Dec 7 16:07:43 2025 +0800
    152 Date:   Sun Feb 22 10:00:00 2026 +0800
      1 Date:   Sun Mar 22 09:20:18 2026 +0800
      1 Date:   Sun Mar 22 09:21:29 2026 +0800
      1 Date:   Sun Mar 22 10:26:43 2026 +0800
      1 Date:   Sun Mar 22 10:43:19 2026 +0800
      1 Date:   Sun Mar 22 10:56:12 2026 +0800
      1 Date:   Sun Mar 29 09:43:33 2026 +0800
      1 Date:   Sun Mar 29 18:49:28 2026 +0800
$

Not sure, but the git log is highly concerning. 152 commits in a second??

[-]

garywilli@reddit (OP)

Good eye! I used this tool git-redate.

Sometimes, before I push code, I make timestamps of trivial commits to same, which looks neat to me (my OCD). Fine for an early personal project (git has squash merge, after all).

Nothing to concern.

I really appreciate your detective work, though. Why don't we focus on code and feature? Since you’ve cloned the repo, I’d be grateful if you could dig up any bugs, sandbox security issues, or report a runtime error. That would be a huge help!

[-]

garywilli@reddit (OP)

Good eye! I used a tool git-redate to make the history look neater (to me). It's just a personal preference. I like my timestamps uniform before a push, regardless of what anyone thinks.

[-]

garywilli@reddit (OP)

99% my code, 1% AI code.

I don't speak native English. I write README in my language, then translate into English with AI's help.

Also, you might have noticed in the .py some comments are in non-English. I know that looks unelegant for an open-source project. Apologies for this. This is an early release. Full English is planned.

[-]

ThomasterXXL@reddit

Not properly catching those does not inspire confidence.

[-]

ColbieSterling@reddit

Thank you so much for making this GPL v3.0 and not MIT or Apache. You're doing [chosen deity]'s work.

[-]

DramaticProtogen@reddit

Why?

[-]

neXITem@reddit

So many assholes just assuming that because someone translated text with AI, the whole project must have been programmed by AI as well.

[-]

OsgoodSlaughters@reddit

Our tools aren't rivals — they complement each other.

Slop

[-]

rockstarx3@reddit

Thank you Claude!

[-]

garywilli@reddit (OP)

99% my code. I finished the other 1% part with AI's help. Thanks AIs (not Claude).

AI also helped tranlate the README so that I could write text in my language. Saved my brain.

PS: You might have noticed in the code file some comments are in non-English. I know that looks not elegant for an open-source project. Apologies for this. This is an early release. Full English is planned.

[-]

aloobhujiyaay@reddit

This could be really useful for testing untrusted code locally

[-]

ThomasterXXL@reddit

You're right! I don't trust this code!