Why Go
- Case Studies
  
  Common problems companies solve with Go
- Use Cases
  
  Stories about how and why companies use Go
- Security
  
  How Go can help keep you secure by default
Learn
Docs
- Effective Go
  
  Tips for writing clear, performant, and idiomatic Go code
- Go User Manual
  
  A complete introduction to building software with Go
- Standard library
  
  Reference documentation for Go's standard library
- Release Notes
  
  Learn what's new in each Go release
Packages
Community
- Recorded Talks
  
  Videos from prior events
- Meetups
  
  Meet other local Go developers
- Conferences
  
  Learn and network with Go developers from around the world
- Go blog
  
  The Go project's official blog.
- Go project
  
  Get help and stay informed from Go
- Get connected

isobox

package module

Go to main page

Versions in this module

v0

v0.1.0

Jun 5, 2026

Changes in this version

+ type Backend string

+ const BackendAppContainer

+ const BackendDockerEphemeral

+ const BackendGvisor

+ const BackendSeatbelt

+ func Backends() []Backend

+ type Capability string

+ const CapFSReadDeny

+ const CapFSReadHost

+ const CapFSReadScope

+ const CapFSWriteDeny

+ const CapFSWriteEphemeral

+ const CapFSWriteScope

+ const CapIPCRestrict

+ const CapKernelIsolation

+ const CapMachRestrict

+ const CapNetDisable

+ const CapNetEnable

+ const CapNetOutbound

+ const CapProcNoExec

+ const CapResCPU

+ const CapResMemory

+ func (c Capability) Describe() string

+ type CapabilitySet struct

+ func CapsOf(b Backend) CapabilitySet

+ func Intersection() CapabilitySet

+ func NewCapabilitySet(caps ...Capability) CapabilitySet

+ func Union() CapabilitySet

+ func (s CapabilitySet) Has(c Capability) bool

+ func (s CapabilitySet) Intersect(other CapabilitySet) CapabilitySet

+ func (s CapabilitySet) Len() int

+ func (s CapabilitySet) List() []Capability

+ func (s CapabilitySet) Sub(other CapabilitySet) CapabilitySet

+ func (s CapabilitySet) Union(other CapabilitySet) CapabilitySet

+ type NetMode int

+ const NetDisable

+ const NetEnable

+ const NetOutbound

+ func (n NetMode) String() string

+ type Plan struct

+ Argv []string

+ Backend Backend

+ Caveats []string

+ Profile string

+ Uses CapabilitySet

+ func (p *Plan) FilesystemVirtualization() string

+ type Runner struct

+ func New() (*Runner, error)

+ func NewBackend(b Backend) (*Runner, error)

+ func (r *Runner) Backend() Backend

+ func (r *Runner) Capabilities() CapabilitySet

+ func (r *Runner) Compile(s Spec) (*Plan, error)

+ func (r *Runner) Run(ctx context.Context, s Spec, streams Stdio) (int, error)

+ type Spec struct

+ AllowTemp bool

+ Args []string

+ CPUs float64

+ Dir string

+ Env []string

+ MachAllow []string

+ MemoryBytes int64

+ Net NetMode

+ NoExec bool

+ ReadDeny []string

+ Readable []string

+ Strict bool

+ Writable []string

+ Write WriteMode

+ func (s Spec) Capabilities() CapabilitySet

+ type Stdio struct

+ Err io.Writer

+ In io.Reader

+ Out io.Writer

+ type WriteMode int

+ const WriteEphemeral

+ const WriteNone

+ const WriteOverlay

+ const WriteScope

+ func (w WriteMode) String() string