POTD: Groovy Sandbox

I posted the other day about Groovy’s SecureASTCustomizer and how it is harmful. In the end of that post, I suggested that doing the check dynamically would work better. So in this installaition of “Project Of The Day”, I went ahead and implemented it. The result is Groovy sandbox. My main idea is to confine…

Groovy SecureASTCustomizer is harmful

I was looking at Groovy DSL slides from Guillaume Laforge when I noticed about SecureASTCustomizer, which led me to what appers to be the original introduction post from Cedric. Being able to lock Groovy execution down would enable me to use Groovy in more places, so I did a bit of experiment. But I regrettably…