For running trusted code that you wrote and reviewed, Docker with a seccomp profile is probably fine. The isolation is against accidental interference, not adversarial escape.
Владислав Уткин
。关于这个话题,搜狗输入法2026提供了深入分析
PIXELS_TRUENAS_HOST
ВсеОбществоПолитикаПроисшествияРегионыМосква69-я параллельМоя страна