Sandboxed wrappers for Cargo and rust-analyzer on Linux

grothesque · May 17, 2026, 10:32pm

Hello,

As is widely known, cargo and rust-analyzer should be only used with dependencies (and dependencies-of-dependencies) that one trusts: Security - rust-analyzer

I would like to share a sandboxing solution for cargo and rust-analyzer on Linux that I developed over the last weeks. My goal was to find a good balance between security and usability.

This project has grown into a general-purpose sandboxing solution for the Linux command line:

The Rust wrappers have separate documentation.

Feedback is appreciated!

grothesque · June 11, 2026, 8:44am

I continued developing and using these wrappers. With the latest release (0.3.0) they are now drop-in replacements for real Cargo and rust-analyzer for most practical workflows. The additional value that the wrappers provide is maintaining two useful and complementary security policies:

Minimize filesystem exposure. The wrappers grant each command access only to the workspace and tool state it needs.
Separate network access from code execution. Cargo subcommands whose purpose is dependency resolution or retrieval may get network access. Common build-like subcommands (like build or run) are split into a networked prefetch phase followed by the requested command in an offline sandbox. The wrapped rust-analyzer follows the same principle: it prefetches dependencies first, then launches real rust-analyzer offline.

I also worked hard on improving the documentation:

github.com/grothesque/sandkasten

rust/README.md

main

# Sandboxed wrappers for Cargo and rust-analyzer

Cargo dependencies can include build scripts and procedural macros.
Cargo and rust-analyzer assume that all of this build-time code is trusted.
Realistically, this is not always the case.

[rust-analyzer is particularly risky](https://rust-analyzer.github.io/book/security.html)
because it runs `cargo` autonomously in the background:
merely opening a workspace in an editor can end up executing
build-time code from the workspace or its dependencies.

The scripts in this directory reduce that exposure while keeping common Rust workflows usable.
They aim to behave like `cargo` and `rust-analyzer`,
except that they run under [Sandkasten (`skn`)](../README.md)
and add suitable `skn` options automatically
based on the command line and the directory from which they are run:

- `skn-cargo` runs Cargo in a mostly automatic sandbox,
  with network access subject to command-specific restrictions.
- `skn-rust-analyzer` runs rust-analyzer in a sandbox,

This file has been truncated. show original

I hope that some people here will find these wrappers useful.

Topic		Replies	Views
[SOLVED] Problems executing cargo inside of a bubblewrap sandbox help	5	1159	December 18, 2020
Does rust-analyzer need more crates than building? editors and IDEs	2	281	October 30, 2024
Cargo-deluxe: A wrapper around `cargo` adding some useful capabilities to rust-analyzer and clippy causing rebuilds announcements	1	157	October 15, 2024
Cargo-Cranelift vs cargo editors and IDEs	2	964	February 21, 2022
Cargo Crusader 0.1 - Test the downstream impact of Rust crate changes before publishing announcements	20	9208	August 28, 2015

Sandboxed wrappers for Cargo and rust-analyzer on Linux

Related topics