isol8 0.4.2 → 0.5.0

package/README.md

@@ -11,8 +11,9 @@ Secure code execution engine for AI agents. Run untrusted Python, Node.js, Bun,
 - **Security first** — read-only rootfs, `no-new-privileges`, PID/memory/CPU limits
 - **Network control** — `none` (default), `host`, or `filtered` (HTTP/HTTPS proxy with regex whitelist/blacklist)
 - **File I/O** — upload files into and download files from sandboxes
-- **Runtime packages** — install pip/npm/bun packages on-the-fly via `installPackages`
-- **Secret masking** — environment variables are scrubbed from output
+-   **Runtime packages** — install pip/npm/bun packages on-the-fly (`--install`)
+-   **Modern Node.js** — defaults to ESM (`.mjs`), supports CommonJS (`.cjs`)
+-   **Secret masking** — environment variables are scrubbed from output
 - **Output truncation** — prevents runaway stdout (default 1MB cap)
 - **Remote mode** — run an HTTP server and execute from anywhere
 - **Embeddable** — use as a TypeScript library in your own project
@@ -103,6 +104,8 @@ isol8 run script.py --host http://server:3000 --key my-api-key
 | `--out <file>` | Write stdout to file | — |
 | `--no-stream` | Disable real-time output streaming | `false` |
 | `--persistent` | Keep container alive between runs | `false` |
+| `--persist` | Keep container after execution for inspection/debugging | `false` |
+| `--debug` | Enable debug logging for internal engine operations | `false` |
 | `--timeout <ms>` | Execution timeout in milliseconds | `30000` |
 | `--memory <limit>` | Memory limit (e.g. `512m`, `1g`) | `512m` |
 | `--cpu <limit>` | CPU limit as fraction (e.g. `0.5`, `2.0`) | `1.0` |

package/dist/cli.js

@@ -6929,6 +6929,11 @@ var require_utils2 = __commonJS((exports, module) => {
   };
 });
 
+// node_modules/ssh2/lib/protocol/crypto/build/Release/sshcrypto.node
+var require_sshcrypto = __commonJS((exports, module) => {
+  module.exports = __require("./sshcrypto-0209sx47.node");
+});
+
 // node_modules/ssh2/lib/protocol/crypto/poly1305.js
 var require_poly1305 = __commonJS((exports, module) => {
   var __dirname = "/home/runner/work/isol8/isol8/node_modules/ssh2/lib/protocol/crypto", __filename = "/home/runner/work/isol8/isol8/node_modules/ssh2/lib/protocol/crypto/poly1305.js";
@@ -7415,7 +7420,7 @@ var require_crypto = __commonJS((exports, module) => {
   var ChaChaPolyDecipher;
   var GenericDecipher;
   try {
-    binding = (()=>{throw new Error("Cannot require module "+"./crypto/build/Release/sshcrypto.node");})();
+    binding = require_sshcrypto();
     ({
       AESGCMCipher,
       ChaChaPolyCipher,
@@ -54793,7 +54798,8 @@ function mergeConfig(defaults, overrides) {
     dependencies: {
       ...defaults.dependencies,
       ...overrides.dependencies
-    }
+    },
+    debug: overrides.debug ?? defaults.debug
   };
 }
 var DEFAULT_CONFIG;
@@ -54816,7 +54822,8 @@ var init_config = __esm(() => {
       autoPrune: true,
       maxContainerAgeMs: 3600000
     },
-    dependencies: {}
+    dependencies: {},
+    debug: false
   };
 });
 
@@ -54826,9 +54833,12 @@ var init_adapter = __esm(() => {
   adapters = new Map;
   extensionMap = new Map;
   RuntimeRegistry = {
-    register(adapter) {
+    register(adapter, aliases = []) {
       adapters.set(adapter.name, adapter);
       extensionMap.set(adapter.getFileExtension(), adapter);
+      for (const ext of aliases) {
+        extensionMap.set(ext, adapter);
+      }
     },
     get(name) {
       const adapter = adapters.get(name);
@@ -54926,7 +54936,7 @@ var init_node = __esm(() => {
       return ["node", "-e", code];
     },
     getFileExtension() {
-      return ".js";
+      return ".mjs";
     }
   };
 });
@@ -54964,12 +54974,43 @@ var init_runtime = __esm(() => {
   init_node();
   init_python();
   RuntimeRegistry.register(PythonAdapter);
-  RuntimeRegistry.register(NodeAdapter);
+  RuntimeRegistry.register(NodeAdapter, [".js", ".cjs"]);
   RuntimeRegistry.register(BunAdapter);
   RuntimeRegistry.register(bashAdapter);
   RuntimeRegistry.register(DenoAdapter);
 });
 
+// src/utils/logger.ts
+var exports_logger = {};
+__export(exports_logger, {
+  logger: () => logger
+});
+
+class Logger {
+  debugMode = false;
+  setDebug(enabled) {
+    this.debugMode = enabled;
+  }
+  debug(...args) {
+    if (this.debugMode) {
+      console.log("[DEBUG]", ...args);
+    }
+  }
+  info(...args) {
+    console.log(...args);
+  }
+  warn(...args) {
+    console.warn("[WARN]", ...args);
+  }
+  error(...args) {
+    console.error("[ERROR]", ...args);
+  }
+}
+var logger;
+var init_logger = __esm(() => {
+  logger = new Logger;
+});
+
 // src/engine/concurrency.ts
 class Semaphore {
   max;
@@ -55078,26 +55119,32 @@ class ContainerPool {
       ...this.createOptions,
       Image: image
     });
+    logger.debug(`[Pool] Container ${container.id} created for image: ${image}`);
     await container.start();
+    logger.debug(`[Pool] Container ${container.id} started`);
     return container;
   }
   replenish(image) {
     if (this.replenishing.has(image)) {
+      logger.debug(`[Pool] Replenishment for ${image} already in progress`);
       return;
     }
     this.replenishing.add(image);
+    logger.debug(`[Pool] Starting background replenishment for image: ${image}`);
     const promise = this.createContainer(image).then((container) => {
       const pool = this.pools.get(image) ?? [];
       if (pool.length < this.poolSize) {
         pool.push({ container, createdAt: Date.now() });
         this.pools.set(image, pool);
+        logger.debug(`[Pool] Replenished container ${container.id} added to pool for ${image}. Pool size: ${pool.length}`);
       } else {
+        logger.debug(`[Pool] Replenished container ${container.id} not needed (pool for ${image} is full), destroying`);
         container.remove({ force: true }).catch((err) => {
-          console.error(`[Pool] Error destroying unneeded replenished container ${container.id}:`, err);
+          logger.error(`[Pool] Error destroying unneeded replenished container ${container.id}:`, err);
         });
       }
     }).catch((err) => {
-      console.error(`[Pool] Error during replenishment for ${image}:`, err);
+      logger.error(`[Pool] Error during replenishment for ${image}:`, err);
     }).finally(() => {
       this.replenishing.delete(image);
       this.pendingReplenishments.delete(promise);
@@ -55105,6 +55152,9 @@ class ContainerPool {
     this.pendingReplenishments.add(promise);
   }
 }
+var init_pool = __esm(() => {
+  init_logger();
+});
 
 // src/engine/utils.ts
 var exports_utils = {};
@@ -55301,7 +55351,7 @@ function getInstallCommand(runtime, packages) {
 }
 async function installPackages(container, runtime, packages) {
   const cmd = getInstallCommand(runtime, packages);
-  console.error(`[DEBUG] Installing packages: ${JSON.stringify(cmd)}`);
+  logger.debug(`Installing packages: ${JSON.stringify(cmd)}`);
   const env2 = [
     "PATH=/sandbox/.local/bin:/sandbox/.npm-global/bin:/sandbox/.bun-global/bin:/usr/local/bin:/usr/bin:/bin:/usr/local/sbin:/usr/sbin:/sbin"
   ];
@@ -55365,6 +55415,7 @@ class DockerIsol8 {
   semaphore;
   sandboxSize;
   tmpSize;
+  persist;
   container = null;
   persistentRuntime = null;
   pool = null;
@@ -55384,6 +55435,10 @@ class DockerIsol8 {
     this.semaphore = new Semaphore(maxConcurrent);
     this.sandboxSize = options.sandboxSize ?? "512m";
     this.tmpSize = options.tmpSize ?? "256m";
+    this.persist = options.persist ?? false;
+    if (options.debug) {
+      logger.setDebug(true);
+    }
   }
   async start() {}
   async stop() {
@@ -55459,7 +55514,8 @@ class DockerIsol8 {
         if (this.network === "filtered") {
           await startProxy(container, this.networkFilter);
         }
-        const filePath = `${SANDBOX_WORKDIR}/main${adapter.getFileExtension()}`;
+        const ext = req.fileExtension ?? adapter.getFileExtension();
+        const filePath = `${SANDBOX_WORKDIR}/main${ext}`;
         await writeFileViaExec(container, filePath, req.code);
         if (req.installPackages?.length) {
           await installPackages(container, req.runtime, req.installPackages);
@@ -55490,9 +55546,13 @@ class DockerIsol8 {
         const execStream = await exec.start({ Tty: false });
         yield* this.streamExecOutput(execStream, exec, container, timeoutMs);
       } finally {
-        try {
-          await container.remove({ force: true });
-        } catch {}
+        if (this.persist) {
+          logger.debug(`[Persist] Leaving container running for inspection: ${container.id}`);
+        } else {
+          try {
+            await container.remove({ force: true });
+          } catch {}
+        }
       }
     } finally {
       this.semaphore.release();
@@ -55533,7 +55593,8 @@ class DockerIsol8 {
       if (this.network === "filtered") {
         await startProxy(container, this.networkFilter);
       }
-      const filePath = `${SANDBOX_WORKDIR}/main${adapter.getFileExtension()}`;
+      const ext = req.fileExtension ?? adapter.getFileExtension();
+      const filePath = `${SANDBOX_WORKDIR}/main${ext}`;
       await writeFileViaExec(container, filePath, req.code);
       if (req.installPackages?.length) {
         await installPackages(container, req.runtime, req.installPackages);
@@ -55579,7 +55640,11 @@ class DockerIsol8 {
         ...req.outputPaths ? { files: await this.retrieveFiles(container, req.outputPaths) } : {}
       };
     } finally {
-      await this.pool.release(container, image);
+      if (this.persist) {
+        logger.debug(`[Persist] Leaving container running for inspection: ${container.id}`);
+      } else {
+        await this.pool.release(container, image);
+      }
     }
   }
   async executePersistent(req) {
@@ -55590,7 +55655,8 @@ class DockerIsol8 {
     } else if (this.persistentRuntime?.name !== adapter.name) {
       throw new Error(`Cannot switch runtime from "${this.persistentRuntime?.name}" to "${adapter.name}". Each persistent container supports a single runtime. Create a new Isol8 instance for a different runtime.`);
     }
-    const filePath = `${SANDBOX_WORKDIR}/exec_${Date.now()}${adapter.getFileExtension()}`;
+    const ext = req.fileExtension ?? adapter.getFileExtension();
+    const filePath = `${SANDBOX_WORKDIR}/exec_${Date.now()}${ext}`;
     if (this.readonlyRootFs) {
       await writeFileViaExec(this.container, filePath, req.code);
     } else {
@@ -55878,6 +55944,8 @@ class DockerIsol8 {
 var import_dockerode, SANDBOX_WORKDIR = "/sandbox", MAX_OUTPUT_BYTES, PROXY_PORT = 8118, PROXY_STARTUP_TIMEOUT_MS = 5000, PROXY_POLL_INTERVAL_MS = 100;
 var init_docker = __esm(() => {
   init_runtime();
+  init_logger();
+  init_pool();
   import_dockerode = __toESM(require_docker(), 1);
   MAX_OUTPUT_BYTES = 1024 * 1024;
 });
@@ -61220,8 +61288,8 @@ program2.command("setup").description("Check Docker and build isol8 images").opt
   console.log(`
 [DONE] Setup complete!`);
 });
-program2.command("run").description("Execute code in isol8").argument("[file]", "Script file to execute").option("-e, --eval <code>", "Execute inline code string").option("-r, --runtime <name>", "Force runtime (python, node, bun, deno, bash)").option("--net <mode>", "Network mode: none, host, filtered", "none").option("--allow <regex>", "Whitelist regex for filtered mode (repeatable)", collect, []).option("--deny <regex>", "Blacklist regex for filtered mode (repeatable)", collect, []).option("--out <file>", "Write output to file").option("--persistent", "Use persistent container").option("--timeout <ms>", "Execution timeout in milliseconds").option("--memory <limit>", "Memory limit (e.g. 512m, 1g)").option("--cpu <limit>", "CPU limit as fraction (e.g. 0.5, 2.0)").option("--image <name>", "Override Docker image").option("--pids-limit <n>", "Maximum number of processes").option("--writable", "Disable read-only root filesystem").option("--max-output <bytes>", "Maximum output size in bytes").option("--secret <KEY=VALUE>", "Secret env var (repeatable, values masked)", collect, []).option("--sandbox-size <size>", "Sandbox tmpfs size (e.g. 128m)").option("--tmp-size <size>", "Tmp tmpfs size (e.g. 256m, 512m)").option("--stdin <data>", "Data to pipe to stdin").option("--install <package>", "Install package for runtime (repeatable)", collect, []).option("--host <url>", "Execute on remote server").option("--key <key>", "API key for remote server").option("--no-stream", "Disable real-time output streaming").action(async (file, opts) => {
-  const { code, runtime, engineOptions, engine, stdinData } = await resolveRunInput(file, opts);
+program2.command("run").description("Execute code in isol8").argument("[file]", "Script file to execute").option("-e, --eval <code>", "Execute inline code string").option("-r, --runtime <name>", "Force runtime (python, node, bun, deno, bash)").option("--net <mode>", "Network mode: none, host, filtered", "none").option("--allow <regex>", "Whitelist regex for filtered mode (repeatable)", collect, []).option("--deny <regex>", "Blacklist regex for filtered mode (repeatable)", collect, []).option("--out <file>", "Write output to file").option("--persistent", "Use persistent container").option("--timeout <ms>", "Execution timeout in milliseconds").option("--memory <limit>", "Memory limit (e.g. 512m, 1g)").option("--cpu <limit>", "CPU limit as fraction (e.g. 0.5, 2.0)").option("--image <name>", "Override Docker image").option("--pids-limit <n>", "Maximum number of processes").option("--writable", "Disable read-only root filesystem").option("--max-output <bytes>", "Maximum output size in bytes").option("--secret <KEY=VALUE>", "Secret env var (repeatable, values masked)", collect, []).option("--sandbox-size <size>", "Sandbox tmpfs size (e.g. 128m)").option("--tmp-size <size>", "Tmp tmpfs size (e.g. 256m, 512m)").option("--stdin <data>", "Data to pipe to stdin").option("--install <package>", "Install package for runtime (repeatable)", collect, []).option("--host <url>", "Execute on remote server").option("--key <key>", "API key for remote server").option("--no-stream", "Disable real-time output streaming").option("--debug", "Enable debug logging").option("--persist", "Keep container running after execution for inspection").action(async (file, opts) => {
+  const { code, runtime, engineOptions, engine, stdinData, fileExtension } = await resolveRunInput(file, opts);
   const cleanup = async () => {
     await engine.stop();
     process.exit(0);
@@ -61238,7 +61306,8 @@ program2.command("run").description("Execute code in isol8").argument("[file]",
       runtime,
       timeoutMs: engineOptions.timeoutMs,
       ...stdinData ? { stdin: stdinData } : {},
-      ...opts.install.length > 0 ? { installPackages: opts.install } : {}
+      ...opts.install.length > 0 ? { installPackages: opts.install } : {},
+      fileExtension
     };
     if (opts.stream !== false) {
       spinner.stop();
@@ -61480,9 +61549,21 @@ async function resolveRunInput(file, opts) {
     ...opts.pidsLimit ? { pidsLimit: Number.parseInt(opts.pidsLimit, 10) } : {},
     ...opts.writable ? { readonlyRootFs: false } : {},
     ...opts.maxOutput ? { maxOutputSize: Number.parseInt(opts.maxOutput, 10) } : {},
-    ...opts.sandboxSize ? { sandboxSize: opts.sandboxSize } : {},
-    ...opts.tmpSize ? { tmpSize: opts.tmpSize } : {}
+    ...opts.tmpSize ? { tmpSize: opts.tmpSize } : {},
+    debug: opts.debug ?? config.debug,
+    persist: opts.persist ?? false
   };
+  if (engineOptions.debug) {
+    const { logger: logger2 } = await Promise.resolve().then(() => (init_logger(), exports_logger));
+    logger2.setDebug(true);
+  }
+  let fileExtension;
+  if (file) {
+    const ext = file.substring(file.lastIndexOf("."));
+    if (ext) {
+      fileExtension = ext;
+    }
+  }
   const secrets = {};
   for (const s of opts.secret ?? []) {
     const idx = s.indexOf("=");
@@ -61505,7 +61586,7 @@ async function resolveRunInput(file, opts) {
   } else {
     engine = new DockerIsol8(engineOptions, config.maxConcurrent);
   }
-  return { code, runtime, engineOptions, engine, stdinData };
+  return { code, runtime, engineOptions, engine, stdinData, fileExtension };
 }
 function collect(value, previous) {
   return previous.concat([value]);
@@ -61516,4 +61597,4 @@ if (!process.argv.slice(2).length) {
 }
 program2.parse();
 
-//# debugId=56782BF23191267E64756E2164756E21
+//# debugId=9AD6B80BEBAE034064756E2164756E21