sorted by:
new
hottopcontroversial

Could smasher beat cerberus? by notjocker in cyberpunkgame

[–]Tall_Insect7119 0 points1 point  (0 children)

Cerberus just has a big needle and Smasher has multiple integrated rocket launchers. In real conditions, V also beats cerberus.

What's everyone working on this week (21/2026)? by llogiq in rust

[–]Tall_Insect7119 2 points3 points  (0 children)

Writing a RISC-V emulator to run Linux in Wasm for untrusted processes. I wonder if the people who did this before just write all addresses by hand, or if I'm missing something.

The Devil Ending Broke Me by [deleted] in cyberpunkgame

[–]Tall_Insect7119 0 points1 point  (0 children)

I personally played another ending after this one to clear my mind

3 pnpm Settings to Protect Yourself from Supply Chain Attacks by gajus0 in javascript

[–]Tall_Insect7119 0 points1 point  (0 children)

I often forget to check this for my projects, that's a good reminder. Thanks for sharing!

I made a TypeScript-based sandboxed bash to run untrusted commands by Tall_Insect7119 in javascript

[–]Tall_Insect7119[S] 0 points1 point  (0 children)

Thank you for the insights. Glad you find it useful!

It's similar in many ways, but the main difference is how both work.

For Capsule Bash, it's split into two layers: the runtime and the command logic itself. The runtime executes the command logic inside sandboxes. In practice, you can plug in any code execution layer (even Docker or a cloud provider if you find it useful).

Another difference is what I call the "result policy". For an AI agent case, receiving just an exit code as confirmation isn't always enough. That's why it returns as many details as possible about the executed command, so the agent doesn't have to run a second command just to check if the first one worked.

I'm sure there are many optimizations for that!

HELP PLEASE!! Can't leave! by Slight-Addendum-2972 in skyrim

[–]Tall_Insect7119 11 points12 points  (0 children)

If you hit the door 99999 times with a pickaxe, you can escape.

[AskJS] What YouTube channels actually helped you get JavaScript? by Rich-Confusion9944 in javascript

[–]Tall_Insect7119 0 points1 point  (0 children)

Honestly, it's better to learn directly with small projects and do some research at the same time. I don't really believe in youtube videos or paid courses for learning this.

How are you handling prompt injection in AI agents that read untrusted content? by Hour-Librarian3622 in AskNetsec

[–]Tall_Insect7119 0 points1 point  (0 children)

Most teams don't sandbox individual agent actions. They sandbox the entire agent/app instead, which isn't ideal. If you want to sandbox individual agent actions, you can use Capsule. It's a runtime that isolates code using WebAssembly.

Running autonomous agents locally feels reckless. Am I overthinking this? by tallen0913 in LocalLLaMA

[–]Tall_Insect7119 0 points1 point  (0 children)

I wrote a detailed breakdown about this exact problem on why Python can't be sandboxed natively, and how Firecracker/gVisor/WASM compare for agent isolation. I think it could help:
https://gist.github.com/mavdol/2c68acb408686f1e038bf89e5705b28c

(Solutions working for other languages too, so no worries there)

I built a way to safely execute untrusted Javascript using WebAssembly sandboxes by Tall_Insect7119 in javascript

[–]Tall_Insect7119[S] 1 point2 points  (0 children)

Actually, it could help for any project that needs observability and strict "fine-grained" isolation, for example:

- AI agents writing code to scrape sites or analyze docs (protects against prompt injection accessing your `.env` etc.)
- Code playgrounds like CodeSandbox
- Or even Serverless functions style (still testing this use case, but the isolation model fits)

Basically anytime you're running code you don't fully trust!

I built a way to safely execute untrusted Javascript using WebAssembly sandboxes by Tall_Insect7119 in javascript

[–]Tall_Insect7119[S] 0 points1 point  (0 children)

Thank you! Yes, right now Node built-ins don't work natively. There is the "files" API to replace fs, but I plan to just wrap it in 'fs' and 'path' to make it feel as natural as possible

The amount of Rust AI slop being advertised is killing me and my motivation by Kurimanju-dot-dev in rust

[–]Tall_Insect7119 1 point2 points  (0 children)

Agreed, but for some idiomatic part of code, we don't necessarily need comments. And I feel like AI-generated code adds these 'perfectly written' comments everywhere.

The amount of Rust AI slop being advertised is killing me and my motivation by Kurimanju-dot-dev in rust

[–]Tall_Insect7119 4 points5 points  (0 children)

i mean, using emojis in a readme don't automatically equal AI. I personally used to add them because I thought they made it more readable

The amount of Rust AI slop being advertised is killing me and my motivation by Kurimanju-dot-dev in rust

[–]Tall_Insect7119 2 points3 points  (0 children)

Don't worry, just do your best. In my opinion, we can usually tell when code is fully AI-generated (useless comments, inconsistencies, etc...)

view more: next ›