eBPF Python runtime sandbox with seccomp (Blocks RCE).
Technical Blogs (Free Reading):
It was created by tracing the code. secimport automatically finds these per-module syscalls for you.
Finally, you convert this policy into an sandbox (eBPF instrumenta…