Re: Someone please explain...
It certainly makes sense to build on an existing language, an ideal scenario would be that you can plug into any script interpreter on the host system but the universe of the script should begin and end with the loaded document. No accessing the filesystem or remote resources, no requesting permissions or granting signed scripts access; the filesystem and network should just not exist for document scripts.
If the script runs in a virtualised environment then this sandboxing wouldn't have to depend on the interpreter, it would depend on the host operating system's ability to constrain a process which should be quite well established.
Biting the hand that feeds IT
