@tuvix.js/sandbox

🔒

@tuvix.js/sandbox

Sandbox

CSS isolation via Shadow DOM and JS isolation via Proxy scope. Prevent style leakage and global scope pollution between micro apps.

npm ↗ GitHub ↗

インストール

bash

npm install @tuvix.js/sandbox

Usage via Orchestrator

The simplest way to use sandboxing is through the orchestrator:

orchestrator.register('my-app', {
  entry: '/my-app.js',
  sandbox: {
    css: true,  // Shadow DOM
    js: true,   // Proxy scope
  },
});

直接使用

import { createSandbox } from '@tuvix.js/sandbox';

const sandbox = createSandbox({ css: true, js: true });
const container = document.getElementById('app')!;

// Activate isolation
const shadowRoot = sandbox.activate(container);

// ... app runs in isolation ...

// Deactivate when done
sandbox.deactivate(container);

API

`createSandbox(options)`

interface SandboxOptions {
  css?: boolean;  // Enable Shadow DOM isolation
  js?: boolean;   // Enable Proxy scope isolation
  allowedGlobals?: string[];
  strict?: boolean;
}

`sandbox.activate(element) → ShadowRoot`

Activates all isolation layers. Returns the Shadow DOM root.

`sandbox.deactivate(element)`

Deactivates all isolation layers and restores the container.

`sandbox.destroy(element)`

Deactivates and fully resets the JS sandbox scope.

CSS Isolation Details

When css: true:

The target element becomes a Shadow DOM host
All styles inside are scoped to the shadow root
External global styles do not affect the micro app

JS Isolation Details

When js: true, the following are intercepted and cleaned up on sandbox.deactivate(container):

window.* property assignments
addEventListener calls
setTimeout / setInterval calls
document.createElement style/script injection

インストール ​

Usage via Orchestrator ​

直接使用 ​

API ​

createSandbox(options) ​

sandbox.activate(element) → ShadowRoot ​

sandbox.deactivate(element) ​

sandbox.destroy(element) ​

CSS Isolation Details ​

JS Isolation Details ​