>_
.issue.db
/highway-workflow-engine
Dashboard
Issues
Memory
Lessons
Audit Log
New Issue
Edit Issue #751
Update issue details
Title *
Description
Implement unified isolation for app system and Python run tool using IPC (multiprocessing + Pipe) with chroot for filesystem isolation. ## Completed: - Added chroot isolation to app_runner.py - Pre-import all ALLOWED_IMPORTS before chroot - Sandbox directory: /tmp/highway_{workflow_run_id}/ - Added CAP_SYS_CHROOT to worker containers in docker-compose.yml - Cleanup sandbox after execution - Tested: /etc/passwd not accessible after chroot ## Remaining: - Phase 2: Create unified isolation executor - Phase 3: Modify Python run tool to use IPC+chroot - Phase 4: Refactor app executor to use shared infrastructure - Phase 5: Delete Docker sandbox code ## Files Modified: - engine/apps/app_runner.py - engine/apps/executor.py - docker-compose.yml ## Security: - Apps cannot read /vault/secrets/, /etc/, or any system path - IPC pipe opened before chroot remains valid - All ctx operations go through IPC to parent process
Priority
Low
Medium
High
Critical
Status
Open
In Progress
Closed
Won't Do
Due Date (YYYY-MM-DD)
Tags (comma separated)
Related Issues (IDs)
Enter IDs of issues related to this one. They will be linked as 'related'.
Update Issue
Cancel