Can I use Kotlin to allow users to develop plugins for my app but give them sandboxed access? As in not allow them to use certain APIs like filesystem API so that they can walk the server or read files they shouldn’t etc…
So basically to create a sandbox where they would have access only to the API that is exposed to them and not them being able to import everything they want.
Be aware that constructing secure, safe sandboxes with the JVM APIs is tricky. It can be done and the JVM provides everything you need, but there’s a lot of different ways to do it and a lot of different ways to screw it up.