As a developer, is there a way on mac to limit npm file access to the specific p...

freakynit · 2025-09-16T15:43:11 1758037391

Wrote a small utility shell script that uses docker behind the scenes to prevent access to your host machine while still allowing full npm install and run workflow.

https://github.com/freakynit/simple-npm-sandbox

Disclaimer: I am not Docker expert. Please review the script (sandbox.js) and raise any potential issues or suggestions.

Thanks..

tredre3 · 2025-09-16T23:34:20 1758065660

You can run nodejs through `sandbox-exec` which is part of macos.

I've never tried any of them but there's also a few wrappers specifically to do that, such as: https://github.com/berstend/node-safe

Otherwise you're down to docker or virtualisation or creating one system user per project...

mfro · 2025-09-16T13:10:36 1758028236

Frankly, I am refusing to use npm outside of docker anymore.