What I do is to have two things, a simple editor, I use helix for normal editing. And in a second terminal a docker container solution where I put opencode or claude in https://git.jeena.net/jeena/agent-container
By sandbox you mean limit to certain files, certain actions, or both?
I've been wanting to look into better emacs integration for agents. Imagine an agent making direct elisp function calls, or using macros... One could limit which functions are allowed to run similar to how cli harnesses work, but plug straight into LSP and etc.
"The starting insight — that splice() hands page-cache pages into the crypto subsystem and that scatterlist page provenance might be an under-explored bug class — came from human research by Taeyang Lee at Xint.
From there, Xint Code scaled the audit across the entire crypto/ subsystem in roughly an hour. Copy Fail was the highest-severity finding in the run."
So, if anything, this might argue against the presence of huge quantities of high-severity bugs in this part of the Linux kernel (that could be found by "Xint Code"-class scanning systems).
2026-03-23Reported to Linux kernel security team
2026-03-24Initial acknowledgment
2026-03-25Patches proposed and reviewed
2026-04-01Patch committed to mainline
2026-04-22CVE-2026-31431 assigned
2026-04-29Public disclosure (https://copy.fail/)
kernel 6.19.14-arch1-1, the kernel in question from the parent comment, has been patched.
the asterisk is my oops, trying to format the comment in italics to differentiate my comment from the text provided by the author. sorry for the confusion
are you sure containerization would be more secure? this is also a rootless podman escape. the lesson here is to not give random people shell access to your systems.
That is just Linux and politics. Linux wants to force vendors to open source theirs, Intel plays along, Nvidia as the market lead does not, so you have to use their proprietary one, which most distros do not ship by default.
That is compatible with what the comment you are replying: you don't need much to beat nVidia open drivers for linux. Intel linux drivers might be behind their Windows drivers, still ahead of nVidia's.
nVidia has zero incentives to play open for linux, they release the binary blobs, next to zero docs and support, and you deal with it. The last nVidia card I bought was 20 years ago, and it was so bad for linux (low perf and freezes for the open drivers, manual re-install hell and pray on each kernel update for the binaries) that I switched to ATI. Since then, ATI or Intel always were decent with zero headaches.
Unix workstations had mice with 3 buttons. The Mac had only one. Windows, Amiga, Atari had two. The Unix developers had choice that others didn't have. They came up with a use that existed forever. Now someone decided to remove the default for no apparent reason. It's like the Android product managers continuing to change the color, size and gesture to answer a phone call: every release, the first call is an exercise in managing frustration.
I wish I had seen this before pulling all that Cat-6a.
reply