科技回声

14 条评论

So their method of sandboxing Python code is to spin up a JS runtime (deno), run Pyodide on it, and then run the Python code in Pyodide.Seems a lot of work to me. Is this really the best way to create and run Python sandboxes?

评论 #43719672 未加载

评论 #43722369 未加载

评论 #43718841 未加载

评论 #43719300 未加载

评论 #43721408 未加载

评论 #43719881 未加载

评论 #43726452 未加载

评论 #43718770 未加载

评论 #43723869 未加载

评论 #43719370 未加载

评论 #43718335 未加载

simonw24 天前

I hacked around with this a bit and figured out a way to get it to spit out logging of the prompts and responses to the server: <a href="https://gist.github.com/simonw/54fc42ef9a7fb8f777162bbbfbba4f23" rel="nofollow">https://gist.github.com/simonw/54fc42ef9a7fb8f777162bbbfbba4...</a>Short-ish version:<pre><code> ANTHROPIC_API_KEY="$(llm keys get anthropic)" \ uv run --with devtools --with pydantic-ai python -c ' import asyncio from devtools import pprint from pydantic_ai import Agent, capture_run_messages from pydantic_ai.mcp import MCPServerStdio server = MCPServerStdio( "deno", args=[ "run", "-N", "-R=node_modules", "-W=node_modules", "--node-modules-dir=auto", "jsr:@pydantic/mcp-run-python", "stdio", ], ) agent = Agent("claude-3-5-haiku-latest", mcp_servers=[server]) async def main(): with capture_run_messages() as messages: async with agent.run_mcp_servers(): result = await agent.run("How many days between 2000-01-01 and 2025-03-18?") pprint(messages) print(result.output) asyncio.run(main())' </code></pre> Output here: <a href="https://gist.github.com/simonw/54fc42ef9a7fb8f777162bbbfbba4f23#output" rel="nofollow">https://gist.github.com/simonw/54fc42ef9a7fb8f777162bbbfbba4...</a>I got it running against Mistral Small 3.1 running locally too - notes on that here: <a href="https://simonwillison.net/2025/Apr/18/mcp-run-python/" rel="nofollow">https://simonwillison.net/2025/Apr/18/mcp-run-python/</a>

evacchi24 天前

cool!! you might also want to check out <a href="https://www.mcp.run/dylibso/eval-py" rel="nofollow">https://www.mcp.run/dylibso/eval-py</a>It's open source too :) <a href="https://github.com/dylibso/mcp.run-servlets/tree/main/servlets/eval-py">https://github.com/dylibso/mcp.run-servlets/tree/main/servle...</a>We also use Wasm to sandbox all our servlets <a href="https://docs.mcp.run/blog/2025/04/07/mcp-run-security" rel="nofollow">https://docs.mcp.run/blog/2025/04/07/mcp-run-security</a>(I work at Dylibso)

_pdp_24 天前

Bookmarked it. We took another approach which provides more flexibility but at the cost of slower spin up. Basically we use firecracker vm. We mount the attachments and everything else into the vm so that the agent can run tools on them (anything on the os) and we destroy the machine at the very end. It works! It is also as secure as firecracker goes.But I like using WASM especially in a hosted environment like Deno. It feels like a more scaleable solution and probably less maintenance too with the downside that that we wont be able to run just any cmd.I am happy to provide more details and point to the tool is anyone is interested. It is not open-source but you can play with it for free.

评论 #43721342 未加载

yahoozoo24 天前

All of these Agent frameworks are already overwhelming. Insert joke about parallels to the JavaScript ecosystem.What agent framework is truly the top dog? Is it just working with the big model providers native frameworks, such as OpenAI’s Agents SDK?

m304724 天前

Having watched the repeated immolation of blissful innocence since smart email clients would run whatever smart (OLE? Smart? I'm kidding.) document was delivered, this is going to be so much fun in a trainwreck kind of way.

bigbuppo24 天前

I keep seeing this MCP thing and I'm really happy that people are getting into Burroughs mainframes rather than that stupid AI crap.

评论 #43721406 未加载

someguy10101024 天前

Nice! I'm working on a way to do this for javascript using v8 <a href="https://github.com/r33drichards/mcp-js">https://github.com/r33drichards/mcp-js</a>. Right now this works but there is some significant jank.

Cluelessidoit24 天前

Hi, I don’t really know anything honestly, but I do remember an ai I running on my laptop using xpip or xpython as a contained environment I think it’s a single instance, would that work or is that close???

jamesralph855524 天前

How secure is this? I tried building something similar, but it was taking too long to setup a fully virtualized solution like kata container or firecracker.

singularity200124 天前

Why not Pyodide directly in python?

评论 #43722399 未加载

turnsout24 天前

Woof, use with care

neuroelectron23 天前

Crap but it's mcp so being good isn't the point anyway

mountainriver24 天前

Cool!

14 条评论

behnamoh24 天前

评论 #43719672 未加载

评论 #43722369 未加载

评论 #43718841 未加载

评论 #43719300 未加载

评论 #43721408 未加载

评论 #43719881 未加载

评论 #43726452 未加载

评论 #43718770 未加载

评论 #43723869 未加载

评论 #43719370 未加载

评论 #43718335 未加载

simonw24 天前

evacchi24 天前

_pdp_24 天前

评论 #43721342 未加载

yahoozoo24 天前

m304724 天前

bigbuppo24 天前

I keep seeing this MCP thing and I'm really happy that people are getting into Burroughs mainframes rather than that stupid AI crap.

评论 #43721406 未加载

someguy10101024 天前

Cluelessidoit24 天前

jamesralph855524 天前

How secure is this? I tried building something similar, but it was taking too long to setup a fully virtualized solution like kata container or firecracker.

singularity200124 天前

Why not Pyodide directly in python?

评论 #43722399 未加载

turnsout24 天前

Woof, use with care

neuroelectron23 天前

Crap but it's mcp so being good isn't the point anyway

mountainriver24 天前

Cool!

MCP Run Python

14 条评论

MCP Run Python

14 条评论