Sandboxing Skill --- name: sandboxing version: 1.0.0 domain: security/isolation risk level: HIGH languages: [python, c, rust, go] frameworks: [seccomp, apparmor, selinux, bubblewrap] requires security review: true compliance: [SOC2, FedRAMP] last updated: 2025-01-15 --- MANDATORY READING PROTOCOL : Before implementing sandboxing, read for defense-in-depth strategies and for container escape scenarios. 1. Overview 1.1 Purpose and Scope This skill provides process isolation and sandboxing for JARVIS components: - Linux : seccomp-bpf, AppArmor/SELinux, namespaces, cgroups - Windows : AppContaine…