Seatbelt Sandboxer
插件 已验证 活跃Generate minimal macOS Seatbelt sandbox configurations for applications
To provide users with a systematic and secure way to isolate macOS applications by generating minimal, effective Seatbelt sandbox configurations.
功能
- Generates minimal macOS Seatbelt configurations
- Follows a four-step profiling methodology
- Supports iterative refinement of sandbox permissions
- Provides guidance on testing and common failure modes
使用场景
- Isolating macOS applications that execute untrusted third-party code
- Reducing the attack surface of high-risk applications on macOS
- Creating targeted sandboxes for specific macOS processes
非目标
- Sandboxing applications on Linux or Windows
- Running untrusted processes directly without profiling
- Replacing containerization solutions for Linux environments
Trust
- info:Issues Attention13 issues opened and 4 closed in the last 90 days, indicating a closure rate below 50% with a moderate number of open issues.
安装
请先添加 Marketplace
/plugin marketplace add trailofbits/skills/plugin install seatbelt-sandboxer@trailofbits质量评分
已验证类似扩展
Dotforge Stack Python Fastapi
100Python 3.12+ with FastAPI, async/await, type hints, and Ruff linting rules for Claude Code.
Dotforge
100Node.js 20+ with Express/Fastify, TypeScript, and ESM module rules for Claude Code.
Msapps Swift Lsp
100Swift Language Server Protocol integration — code intelligence, completions, diagnostics, and refactoring for iOS and macOS projects
Ruflo Agent
99Agent runtimes for ruflo — local WASM-sandboxed agents (rvagent: 10 wasm_agent_*/wasm_gallery_* MCP tools, built on @ruvector/rvagent-wasm + @ruvector/ruvllm-wasm per ADR-070) plus Anthropic Claude Managed Agents as a cloud backend (managed_agent_* MCP tools per ADR-115). One interface, local-vs-cloud runtimes.
Context Mode
98MCP 服务器,通过会话连续性可节省 98% 的上下文窗口。支持 11 种语言的沙盒代码执行,具有 BM25 排序的 FTS5 知识库,以及跨压缩的自动状态恢复。
Msapps Vm Disk Cleanup
93Fix disk-full errors in Cowork VMs and Claude Code sandboxes — clean caches, temp files, and reclaim space automatically