#bazel #filesystem #fuse #sandboxing

bin+lib sandboxfs

A virtual file system for sandboxing

3 unstable releases

Uses old Rust 2015

0.2.0 Apr 20, 2020
0.1.1 Oct 24, 2019
0.1.0 Feb 5, 2019

#248 in Filesystem

Download history 19/week @ 2021-03-22 17/week @ 2021-03-29 15/week @ 2021-04-05 12/week @ 2021-04-12 13/week @ 2021-04-19 19/week @ 2021-04-26 13/week @ 2021-05-03 9/week @ 2021-05-10 16/week @ 2021-05-17 9/week @ 2021-05-24 9/week @ 2021-05-31 8/week @ 2021-06-07 4/week @ 2021-06-14 3/week @ 2021-06-21 3/week @ 2021-06-28 5/week @ 2021-07-05

63 downloads per month



Go 4K SLoC // 0.2% comments Rust 3.5K SLoC // 0.1% comments Shell 337 SLoC // 0.3% comments

sandboxfs: A virtual file system for sandboxing

sandboxfs is a FUSE file system that exposes a combination of multiple files and directories from the host's file system in the form of a virtual tree with an arbitrary layout. You can think of a sandbox as an arbitrary view into the host's file system with different access privileges per directory.

sandboxfs is designed to allow running commands with limited access to the file system by using the virtual tree as their new root, and to do so consistently across a variety of platforms.

sandboxfs is licensed under the Apache 2.0 license and is not an official Google product.


The latest version of sandboxfs is 0.2.0 and was released on 2020-04-20.

See the installation instructions for details on how to build and install sandboxfs.

See the release notes file for more details.


sandboxfs is fully documented in the sandboxfs(1) manual page, which is located in the man/sandboxfs.1 file. You can view a rendered version of this manual page using the following command after cloning the tree:

man ./man/sandboxfs.1


If you'd like to contribute to sandboxfs, there is plenty of work to be done! Please make sure to read our contribution guidelines to learn about some important prerequisite steps.


~133K SLoC