For additional protection and access control of child processes spawned by applications, the interpreter must ensure that the child process runs inside a Pyronia sandbox.
Steps:
[ ] Obtain the top-level library making the exec (can be done as part of the context preservation process)
[ ] Tell the kernel to spawn the child in a sandbox with the top-level library's permissions.
Corresponds to https://github.com/masomel/libpyronia/issues/7
For additional protection and access control of child processes spawned by applications, the interpreter must ensure that the child process runs inside a Pyronia sandbox.
Steps: