August 16, 2025English

Explore JavaScript Compartments, a powerful technique for sandboxing code execution, enhancing security, and isolating environments in modern web development.

JavaScript Compartments: Sandboxed Code Execution for Enhanced Security

In today's complex web development landscape, security and isolation are paramount. JavaScript Compartments offer a powerful mechanism for sandboxing code execution, enabling developers to create secure and isolated environments within their applications. This article delves into the concept of JavaScript Compartments, exploring their benefits, implementation, and use cases.

What are JavaScript Compartments?

JavaScript Compartments provide a way to create distinct, isolated execution environments within a single JavaScript runtime. Each compartment has its own global object, allowing code running within it to operate without interfering with other compartments or the main application. This isolation is crucial for mitigating security risks and ensuring application stability.

Think of it like running multiple virtual machines, but within the same JavaScript engine. Each "VM" (Compartment) has its own set of resources and cannot directly access the resources of other compartments.

Key Concepts and Terminology

Realm: A realm represents a distinct execution environment. Compartments are a higher-level abstraction built upon realms (though implementations may vary).
Global Object: Each compartment possesses its own global object (e.g., window in browsers, or a custom object in Node.js). This isolates variables and functions defined within the compartment.
Security Context: Compartments establish a security context that restricts access to resources outside the compartment.
Object Graph Isolation: Objects within a compartment are typically isolated from those in other compartments, preventing unintended data sharing or manipulation.

Benefits of Using JavaScript Compartments

Employing JavaScript Compartments offers several significant advantages:

1. Enhanced Security

Compartments are a powerful tool for mitigating security risks, especially when dealing with untrusted or third-party code. By isolating code within a compartment, you can prevent it from accessing sensitive data or interfering with the core functionality of your application. This is particularly important in scenarios such as:

Running Third-Party Libraries: When incorporating external libraries, you often have limited control over their code. Compartments can protect your application from potential vulnerabilities or malicious code within these libraries.
Executing User-Generated Content: If your application allows users to submit code (e.g., custom scripts or widgets), compartments can prevent malicious users from injecting harmful code into your application.
Web Extensions: Browser extensions that run JavaScript code in a privileged context also benefit from compartments to isolate different extension components, preventing one malicious extension from taking over the entire browser.

Example: Imagine you're building an online code editor that allows users to run their JavaScript code. Without compartments, a malicious user could potentially access the editor's internal data or even compromise the server. By running the user's code within a compartment, you can isolate it from the editor's core functionality and prevent any harm.

2. Improved Stability

Compartments can also improve the stability of your application by preventing code in one compartment from crashing or corrupting code in another. This is especially useful in complex applications with multiple modules or components that may have dependencies on each other.

Example: Consider a large web application with several independent modules, each responsible for a specific feature. If one module encounters an error that causes it to crash, compartments can prevent that error from affecting the other modules, ensuring that the application remains functional.

3. Modularity and Code Organization

Compartments facilitate modularity by allowing you to organize your code into distinct, isolated modules. This makes it easier to manage and maintain your codebase, especially in large and complex projects. By separating concerns into different compartments, you can reduce the risk of unintended dependencies and improve the overall structure of your application.

Example: In a large e-commerce application, you might create separate compartments for the shopping cart, product catalog, and payment processing modules. This would allow you to develop and maintain each module independently, without worrying about conflicts or dependencies between them.

4. Secure Plugin Architectures

For applications that support plugins, compartments provide a secure way to isolate plugin code from the core application. This prevents malicious or buggy plugins from compromising the integrity of the application. Each plugin runs in its own sandboxed environment, preventing access to sensitive data or critical functionalities of the main application.

5. Secure Data Processing

In scenarios involving sensitive data processing, compartments provide a secure environment for executing data transformations or analyses. This helps prevent data leakage or unauthorized access to sensitive information. The isolation ensures that any temporary variables or intermediate results are confined to the compartment and cannot be accessed from outside.

Implementing JavaScript Compartments

Several approaches exist for implementing JavaScript Compartments, with varying levels of complexity and security guarantees. Some common techniques include:

1. Using `` Elements (Browser-Based)</h3> <p>In web browsers, `<iframe>` elements provide a simple form of isolation. Each `<iframe>` has its own document and JavaScript context, effectively creating a separate compartment. While not as fine-grained as other approaches, `<iframe>` elements are widely supported and relatively easy to use. However, communication between the main document and the iframe requires explicit messaging via `postMessage`.</p> <p><b>Example:</b></p> <div class="code-block-wrapper"> <pre data-language="code"> <code><iframe src="sandbox.html" id="sandbox"></iframe> <script> const iframe = document.getElementById('sandbox'); iframe.contentWindow.postMessage('Hello from the main page!', '*'); </script> </code> <div class="copy-button-container"> <button data-code="PGlmcmFtZSBzcmM9InNhbmRib3guaHRtbCIgaWQ9InNhbmRib3giPjwvaWZyYW1lPgo8c2NyaXB0PgogIGNvbnN0IGlmcmFtZSA9IGRvY3VtZW50LmdldEVsZW1lbnRCeUlkKCdzYW5kYm94Jyk7CiAgaWZyYW1lLmNvbnRlbnRXaW5kb3cucG9zdE1lc3NhZ2UoJ0hlbGxvIGZyb20gdGhlIG1haW4gcGFnZSEnLCAnKicpOwo8L3NjcmlwdD4K" class="copy-button" title="Copy code" > Copy </button> </div> </pre> </div> <p>And within `sandbox.html`:</p> <div class="code-block-wrapper"> <pre data-language="code"> <code><script> window.addEventListener('message', (event) => { console.log('Message received from the main page:', event.data); }); </script> </code> <div class="copy-button-container"> <button data-code="PHNjcmlwdD4KICB3aW5kb3cuYWRkRXZlbnRMaXN0ZW5lcignbWVzc2FnZScsIChldmVudCkgPT4gewogICAgY29uc29sZS5sb2coJ01lc3NhZ2UgcmVjZWl2ZWQgZnJvbSB0aGUgbWFpbiBwYWdlOicsIGV2ZW50LmRhdGEpOwogIH0pOwo8L3NjcmlwdD4K" class="copy-button" title="Copy code" > Copy </button> </div> </pre> </div> <h3>2. Using Web Workers (Browser and Node.js)</h3> <p>Web Workers provide a way to run JavaScript code in a separate thread, offering a degree of isolation from the main thread. While not as strict as compartments, Web Workers can be useful for offloading computationally intensive tasks and preventing them from blocking the main thread. Web Workers also communicate via message passing.</p> <p><b>Example:</b></p> <div class="code-block-wrapper"> <pre data-language="code"> <code>// main.js const worker = new Worker('worker.js'); worker.postMessage('Start processing!'); worker.onmessage = (event) => { console.log('Result from worker:', event.data); }; // worker.js self.addEventListener('message', (event) => { const data = event.data; // Perform some intensive task const result = data.toUpperCase(); self.postMessage(result); }); </code> <div class="copy-button-container"> <button data-code="Ly8gbWFpbi5qcwpjb25zdCB3b3JrZXIgPSBuZXcgV29ya2VyKCd3b3JrZXIuanMnKTsKd29ya2VyLnBvc3RNZXNzYWdlKCdTdGFydCBwcm9jZXNzaW5nIScpOwp3b3JrZXIub25tZXNzYWdlID0gKGV2ZW50KSA9PiB7CiAgY29uc29sZS5sb2coJ1Jlc3VsdCBmcm9tIHdvcmtlcjonLCBldmVudC5kYXRhKTsKfTsKCi8vIHdvcmtlci5qcwpzZWxmLmFkZEV2ZW50TGlzdGVuZXIoJ21lc3NhZ2UnLCAoZXZlbnQpID0+IHsKICBjb25zdCBkYXRhID0gZXZlbnQuZGF0YTsKICAvLyBQZXJmb3JtIHNvbWUgaW50ZW5zaXZlIHRhc2sKICBjb25zdCByZXN1bHQgPSBkYXRhLnRvVXBwZXJDYXNlKCk7CiAgc2VsZi5wb3N0TWVzc2FnZShyZXN1bHQpOwp9KTsK" class="copy-button" title="Copy code" > Copy </button> </div> </pre> </div> <h3>3. Using Virtual Machines (Node.js)</h3> <p>Node.js provides the `vm` module, which allows you to create and execute JavaScript code within a virtual machine context. This offers a higher level of isolation than `<iframe>` elements or Web Workers. The `vm` module allows you to define a custom global object for the virtual machine, restricting access to resources outside the VM context.</p> <p><b>Example:</b></p> <div class="code-block-wrapper"> <pre data-language="code"> <code>const vm = require('vm'); const sandbox = { name: 'Sandbox', data: { secret: 'This should be hidden' } }; const context = vm.createContext(sandbox); const code = ` console.log('Hello from ' + name + '!'); // Attempt to access global variables (will fail in the sandbox) // console.log(process.version); // Would cause an error in a real sandbox, but might not here depending on configuration if (typeof process !== 'undefined') { console.log("Access to 'process' might be allowed!"); } if (typeof require !== 'undefined') { console.log("Access to 'require' might be allowed!"); } // Demonstrate access to sandbox properties console.log('Secret is potentially exposed (if not carefully sandboxed): ' + data.secret); `; vm.runInContext(code, context); </code> <div class="copy-button-container"> <button data-code="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" class="copy-button" title="Copy code" > Copy </button> </div> </pre> </div> <p><b>Important Considerations When Using `vm` Module:</b></p> <ul> <li><b>Careful Context Creation:</b> Always create a clean context for the sandboxed code, explicitly defining which properties should be accessible. Avoid passing the global `process` object directly.</li> <li><b>Limited Access to `require`:</b> Restricting access to the `require` function is essential to prevent the sandboxed code from loading arbitrary modules and potentially escaping the sandbox.</li> <li><b>Security Reviews:</b> Code that utilizes the `vm` module for sandboxing should undergo thorough security reviews to identify potential vulnerabilities.</li> </ul> <h3>4. Specialized Sandboxing Libraries</h3> <p>Several JavaScript libraries provide higher-level abstractions for creating and managing compartments. These libraries often offer enhanced security features and simplified APIs. Examples include:</p> <ul> <li><b>SES (Secure ECMAScript):</b> SES is a secure subset of JavaScript designed for building secure applications. It provides a robust sandboxing environment that prevents common security vulnerabilities. SES relies on object capabilities.</li> </ul> <h2>Use Cases for JavaScript Compartments</h2> <p>JavaScript Compartments are valuable in various scenarios, including:</p> <ul> <li><b>Running Untrusted Code:</b> As mentioned earlier, compartments are essential for safely executing untrusted code, such as user-generated scripts or third-party libraries.</li> <li><b>Plugin Architectures:</b> Compartments enable secure plugin architectures by isolating plugin code from the core application.</li> <li><b>Microservices:</b> In a microservices architecture, compartments can provide isolation between different microservices, preventing one service from affecting others.</li> <li><b>Web Application Security:</b> Compartments can enhance the security of web applications by isolating different components, such as user interfaces and data processing modules.</li> <li><b>Testing:</b> Compartments can be used to create isolated testing environments, allowing you to run tests without affecting the main application.</li> </ul> <h2>Challenges and Considerations</h2> <p>While JavaScript Compartments offer significant benefits, there are also some challenges and considerations to keep in mind:</p> <ul> <li><b>Performance Overhead:</b> Creating and managing compartments can introduce some performance overhead, especially when dealing with a large number of compartments. Consider performance implications, especially in CPU intensive scenarios.</li> <li><b>Complexity:</b> Implementing and managing compartments can add complexity to your codebase, requiring careful planning and design.</li> <li><b>Communication:</b> Communicating between compartments can be challenging, requiring explicit messaging mechanisms.</li> <li><b>Feature Support:</b> The availability and implementation of compartments may vary depending on the JavaScript environment (browser, Node.js, etc.).</li> </ul> <h2>Best Practices for Using JavaScript Compartments</h2> <p>To effectively leverage JavaScript Compartments, consider the following best practices:</p> <ul> <li><b>Define Clear Boundaries:</b> Carefully define the boundaries of each compartment, specifying which resources are accessible and which are not.</li> <li><b>Use Least Privilege:</b> Grant each compartment only the minimum privileges required to perform its intended function.</li> <li><b>Sanitize Inputs:</b> Always sanitize inputs from external sources before passing them to compartments.</li> <li><b>Monitor Performance:</b> Monitor the performance of your application to identify and address any performance bottlenecks caused by compartments.</li> <li><b>Security Audits:</b> Regularly conduct security audits to identify and address potential vulnerabilities in your compartment implementation.</li> <li><b>Stay Updated:</b> Keep up-to-date with the latest security best practices and recommendations for using JavaScript Compartments.</li> </ul> <h2>Examples Across Different Platforms</h2> <p>The usage of JavaScript Compartments (or similar concepts) can vary across different platforms. Here are some examples:</p> <ul> <li><b>Web Browsers (e.g., Chrome, Firefox):</b> Browsers employ multiple processes and sandboxing techniques. Each tab often runs in a separate process. Extensions have specific permission models that control what resources they can access. </li> <li><b>Node.js (Server-Side JavaScript):</b> The `vm` module in Node.js provides a basic way to create sandboxed environments, but it requires careful configuration to be truly secure. Other containerization technologies like Docker are often used to provide process-level isolation between Node.js applications.</li> <li><b>Cloud Platforms (e.g., AWS Lambda, Google Cloud Functions, Azure Functions):</b> These platforms automatically isolate function executions, providing a compartment-like environment for each function invocation.</li> <li><b>Electron (Desktop Applications):</b> Electron uses Chromium's multi-process architecture, allowing you to sandbox parts of your application in separate renderer processes.</li> </ul> <h2>Emerging Trends and Future Directions</h2> <p>The field of JavaScript sandboxing is constantly evolving. Some emerging trends and future directions include:</p> <ul> <li><b>Standardization:</b> Efforts are underway to standardize the concept of compartments in JavaScript, which would lead to more consistent and portable implementations across different environments.</li> <li><b>Improved Performance:</b> Ongoing research is focused on improving the performance of compartment implementations, reducing the overhead associated with sandboxing.</li> <li><b>Advanced Security Features:</b> New security features are being developed to further enhance the isolation and security of compartments.</li> </ul> <h2>Conclusion</h2> <p>JavaScript Compartments provide a powerful mechanism for sandboxing code execution, enhancing security, and isolating environments in modern web development. By understanding the concepts, benefits, and challenges of compartments, developers can build more secure, stable, and modular applications. As the web development landscape continues to evolve, JavaScript Compartments will play an increasingly important role in ensuring the security and integrity of web applications and other JavaScript-based systems. It is crucial to carefully consider the security implications and choose appropriate techniques depending on the environment and security requirements. Remember to constantly review and update your security practices to keep pace with evolving threats.</p></div><footer class="mt-12 pt-8 border-t border-gray-200"><h3 class="text-sm font-semibold text-gray-900 mb-3 dark:text-white/90">Tags:</h3><div class="flex flex-wrap gap-2"><span class="inline-block bg-gray-100 text-gray-800 px-3 py-1 rounded-full text-sm hover:bg-gray-200 transition-colors dark:bg-neutral-800 dark:text-white dark:hover:bg-neutral-700">JavaScript</span><span class="inline-block bg-gray-100 text-gray-800 px-3 py-1 rounded-full text-sm hover:bg-gray-200 transition-colors dark:bg-neutral-800 dark:text-white dark:hover:bg-neutral-700">Compartments</span><span class="inline-block bg-gray-100 text-gray-800 px-3 py-1 rounded-full text-sm hover:bg-gray-200 transition-colors dark:bg-neutral-800 dark:text-white dark:hover:bg-neutral-700">sandboxing</span><span class="inline-block bg-gray-100 text-gray-800 px-3 py-1 rounded-full text-sm hover:bg-gray-200 transition-colors dark:bg-neutral-800 dark:text-white dark:hover:bg-neutral-700">security</span><span class="inline-block bg-gray-100 text-gray-800 px-3 py-1 rounded-full text-sm hover:bg-gray-200 transition-colors dark:bg-neutral-800 dark:text-white dark:hover:bg-neutral-700">code execution</span><span class="inline-block bg-gray-100 text-gray-800 px-3 py-1 rounded-full text-sm hover:bg-gray-200 transition-colors dark:bg-neutral-800 dark:text-white dark:hover:bg-neutral-700">isolation</span><span class="inline-block bg-gray-100 text-gray-800 px-3 py-1 rounded-full text-sm hover:bg-gray-200 transition-colors dark:bg-neutral-800 dark:text-white dark:hover:bg-neutral-700">security context</span><span class="inline-block bg-gray-100 text-gray-800 px-3 py-1 rounded-full text-sm hover:bg-gray-200 transition-colors dark:bg-neutral-800 dark:text-white dark:hover:bg-neutral-700">realms</span><span class="inline-block bg-gray-100 text-gray-800 px-3 py-1 rounded-full text-sm hover:bg-gray-200 transition-colors dark:bg-neutral-800 dark:text-white dark:hover:bg-neutral-700">global object</span><span class="inline-block bg-gray-100 text-gray-800 px-3 py-1 rounded-full text-sm hover:bg-gray-200 transition-colors dark:bg-neutral-800 dark:text-white dark:hover:bg-neutral-700">web development</span><span class="inline-block bg-gray-100 text-gray-800 px-3 py-1 rounded-full text-sm hover:bg-gray-200 transition-colors dark:bg-neutral-800 dark:text-white dark:hover:bg-neutral-700">secure coding</span><span class="inline-block bg-gray-100 text-gray-800 px-3 py-1 rounded-full text-sm hover:bg-gray-200 transition-colors dark:bg-neutral-800 dark:text-white dark:hover:bg-neutral-700">modularity</span></div></footer></article></div><script>$RS=function(a,b){a=document.getElementById(a);b=document.getElementById(b);for(a.parentNode.removeChild(a);a.firstChild;)b.parentNode.insertBefore(a.firstChild,b);b.parentNode.removeChild(b)};$RS("S:2","P:2")</script><script>$RB=[];$RV=function(b){$RT=performance.now();for(var a=0;a<b.length;a+=2){var c=b[a],e=b[a+1];null!==e.parentNode&&e.parentNode.removeChild(e);var f=c.parentNode;if(f){var g=c.previousSibling,h=0;do{if(c&&8===c.nodeType){var d=c.data;if("/$"===d||"/&"===d)if(0===h)break;else h--;else"$"!==d&&"$?"!==d&&"$~"!==d&&"$!"!==d&&"&"!==d||h++}d=c.nextSibling;f.removeChild(c);c=d}while(c);for(;e.firstChild;)f.insertBefore(e.firstChild,c);g.data="$";g._reactRetry&&g._reactRetry()}}b.length=0}; $RC=function(b,a){if(a=document.getElementById(a))(b=document.getElementById(b))?(b.previousSibling.data="$~",$RB.push(b,a),2===$RB.length&&(b="number"!==typeof $RT?0:$RT,a=performance.now(),setTimeout($RV.bind(null,$RB),2300>a&&2E3<a?2300-a:b+300-a))):a.parentNode.removeChild(a)};$RC("B:1","S:1")</script><div style="display:none" id="S:3"></div><script>$RC("B:3","S:3")</script><div style="display:none" id="S:0"><template id="P:4"></template><template id="P:5"></template><template id="P:6"></template><template id="P:7"></template><template id="P:8"></template><template id="P:9"></template><template id="P:a"></template><template id="P:b"></template><template id="P:c"></template><template id="P:d"></template><template id="P:e"></template><template id="P:f"></template><template id="P:10"></template><template id="P:11"></template><template id="P:12"></template><template id="P:13"></template><template id="P:14"></template><template id="P:15"></template><template id="P:16"></template><template id="P:17"></template><template id="P:18"></template><template id="P:19"></template><template id="P:1a"></template><template id="P:1b"></template><template id="P:1c"></template><template id="P:1d"></template><template id="P:1e"></template><template id="P:1f"></template><template id="P:20"></template><template id="P:21"></template><template id="P:22"></template><template id="P:23"></template><template id="P:24"></template><template id="P:25"></template><template id="P:26"></template><template id="P:27"></template><template id="P:28"></template><template id="P:29"></template><template id="P:2a"></template><template id="P:2b"></template><template id="P:2c"></template><template id="P:2d"></template><template id="P:2e"></template><template id="P:2f"></template><template id="P:30"></template><template id="P:31"></template><template id="P:32"></template><template id="P:33"></template><template id="P:34"></template><template id="P:35"></template><template id="P:36"></template><template id="P:37"></template><template id="P:38"></template><template id="P:39"></template><template id="P:3a"></template><template id="P:3b"></template><template id="P:3c"></template><template id="P:3d"></template><template id="P:3e"></template><template id="P:3f"></template><template id="P:40"></template><template id="P:41"></template><template id="P:42"></template><template id="P:43"></template><template id="P:44"></template><template id="P:45"></template><template id="P:46"></template><template id="P:47"></template><template id="P:48"></template></div><link rel="alternate" hrefLang="ar" href="https://mlog.uz/ar/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="hi" href="https://mlog.uz/hi/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="tr" href="https://mlog.uz/tr/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="nl" href="https://mlog.uz/nl/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="pl" href="https://mlog.uz/pl/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="sv" href="https://mlog.uz/sv/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="no" href="https://mlog.uz/no/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="da" href="https://mlog.uz/da/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="fi" href="https://mlog.uz/fi/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="cs" href="https://mlog.uz/cs/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="hu" href="https://mlog.uz/hu/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="ro" href="https://mlog.uz/ro/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="bg" href="https://mlog.uz/bg/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="hr" href="https://mlog.uz/hr/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="sk" href="https://mlog.uz/sk/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="sl" href="https://mlog.uz/sl/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="et" href="https://mlog.uz/et/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="lv" href="https://mlog.uz/lv/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="lt" href="https://mlog.uz/lt/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="el" href="https://mlog.uz/el/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="he" href="https://mlog.uz/he/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="th" href="https://mlog.uz/th/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="vi" href="https://mlog.uz/vi/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="id" href="https://mlog.uz/id/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="bn" href="https://mlog.uz/bn/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="uk" href="https://mlog.uz/uk/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="uz" href="https://mlog.uz/uz/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="fa" href="https://mlog.uz/fa/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="gu" href="https://mlog.uz/gu/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="kn" href="https://mlog.uz/kn/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="ml" href="https://mlog.uz/ml/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="mr" href="https://mlog.uz/mr/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="ta" href="https://mlog.uz/ta/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="te" href="https://mlog.uz/te/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><link rel="alternate" hrefLang="x-default" href="https://mlog.uz/en/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><meta name="format-detection" content="telephone=no, address=no, email=no"/><meta name="google-site-verification" content="your-google-verification-code"/><meta name="yandex-verification" content="your-yandex-verification-code"/><meta property="og:title" content="JavaScript Compartments: Sandboxed Code Execution for Enhanced Security"/><meta property="og:description" content="Explore JavaScript Compartments, a powerful technique for sandboxing code execution, enhancing security, and isolating environments in modern web development."/><meta property="og:url" content="https://mlog.uz/en/blog/JavaScript%20Compartments%3A%20Sandboxed%20Code%20Execution%20for%20Enhanced%20Security"/><meta property="og:site_name" content="MLOG - Blog Platform"/><meta property="og:locale" content="en"/><meta property="og:type" content="article"/><meta property="article:published_time" content="2025-08-16T20:56:11.258Z"/><meta property="article:modified_time" content="2025-08-16T20:56:11.258Z"/><meta property="article:author" content="MEZES"/><meta property="article:tag" content="JavaScript"/><meta property="article:tag" content="Compartments"/><meta property="article:tag" content="sandboxing"/><meta property="article:tag" content="security"/><meta property="article:tag" content="code execution"/><meta property="article:tag" content="isolation"/><meta property="article:tag" content="security context"/><meta property="article:tag" content="realms"/><meta property="article:tag" content="global object"/><meta property="article:tag" content="web development"/><meta property="article:tag" content="secure coding"/><meta property="article:tag" content="modularity"/><meta name="twitter:card" content="summary_large_image"/><meta name="twitter:site" content="mlog.uz"/><meta name="twitter:creator" content="MEZES"/><meta name="twitter:title" content="JavaScript Compartments: Sandboxed Code Execution for Enhanced Security"/><meta name="twitter:description" content="Explore JavaScript Compartments, a powerful technique for sandboxing code execution, enhancing security, and isolating environments in modern web development."/><meta name="twitter:image" content="https://mlog.uz/images/mlog.jpg"/><link rel="icon" href="/favicon.ico" type="image/x-icon" sizes="32x32"/><link rel="icon" href="/images/mlog-192.png"/><link rel="apple-touch-icon" href="/images/mlog-192.png"/><script >document.querySelectorAll('body link[rel="icon"], body link[rel="apple-touch-icon"]').forEach(el => document.head.appendChild(el))</script><div hidden id="S:4"></div><script>$RS("S:4","P:4")</script><div hidden id="S:5"></div><script>$RS("S:5","P:5")</script><div hidden id="S:6"></div><script>$RS("S:6","P:6")</script><div hidden id="S:7"></div><script>$RS("S:7","P:7")</script><div hidden id="S:8"></div><script>$RS("S:8","P:8")</script><div hidden id="S:9"></div><script>$RS("S:9","P:9")</script><div hidden id="S:a"></div><script>$RS("S:a","P:a")</script><div hidden id="S:b"></div><script>$RS("S:b","P:b")</script><div hidden id="S:c"></div><script>$RS("S:c","P:c")</script><div hidden id="S:d"></div><script>$RS("S:d","P:d")</script><div hidden id="S:e"></div><script>$RS("S:e","P:e")</script><div hidden id="S:f"></div><script>$RS("S:f","P:f")</script><div hidden id="S:10"></div><script>$RS("S:10","P:10")</script><div hidden id="S:11"></div><script>$RS("S:11","P:11")</script><div hidden id="S:12"></div><script>$RS("S:12","P:12")</script><div hidden id="S:13"></div><script>$RS("S:13","P:13")</script><div hidden id="S:14"></div><script>$RS("S:14","P:14")</script><div hidden id="S:15"></div><script>$RS("S:15","P:15")</script><div hidden id="S:16"></div><script>$RS("S:16","P:16")</script><div hidden id="S:17"></div><script>$RS("S:17","P:17")</script><div hidden id="S:18"></div><script>$RS("S:18","P:18")</script><div hidden id="S:19"></div><script>$RS("S:19","P:19")</script><div hidden id="S:1a"></div><script>$RS("S:1a","P:1a")</script><div hidden id="S:1b"></div><script>$RS("S:1b","P:1b")</script><div hidden id="S:1c"></div><script>$RS("S:1c","P:1c")</script><div hidden id="S:1d"></div><script>$RS("S:1d","P:1d")</script><div hidden id="S:1e"></div><script>$RS("S:1e","P:1e")</script><div hidden id="S:1f"></div><script>$RS("S:1f","P:1f")</script><div hidden id="S:20"></div><script>$RS("S:20","P:20")</script><div hidden id="S:21"></div><script>$RS("S:21","P:21")</script><div hidden id="S:22"></div><script>$RS("S:22","P:22")</script><div hidden id="S:23"></div><script>$RS("S:23","P:23")</script><div hidden id="S:24"></div><script>$RS("S:24","P:24")</script><div hidden id="S:25"></div><script>$RS("S:25","P:25")</script><div hidden id="S:26"></div><script>$RS("S:26","P:26")</script><div hidden id="S:27"></div><script>$RS("S:27","P:27")</script><div hidden id="S:28"></div><script>$RS("S:28","P:28")</script><div hidden id="S:29"></div><script>$RS("S:29","P:29")</script><div hidden id="S:2a"></div><script>$RS("S:2a","P:2a")</script><div hidden id="S:2b"></div><script>$RS("S:2b","P:2b")</script><div hidden id="S:2c"></div><script>$RS("S:2c","P:2c")</script><div hidden id="S:2d"></div><script>$RS("S:2d","P:2d")</script><div hidden id="S:2e"></div><script>$RS("S:2e","P:2e")</script><div hidden id="S:2f"></div><script>$RS("S:2f","P:2f")</script><div hidden id="S:30"></div><script>$RS("S:30","P:30")</script><div hidden id="S:31"></div><script>$RS("S:31","P:31")</script><div hidden id="S:32"></div><script>$RS("S:32","P:32")</script><div hidden id="S:33"></div><script>$RS("S:33","P:33")</script><div hidden id="S:34"></div><script>$RS("S:34","P:34")</script><div hidden id="S:35"></div><script>$RS("S:35","P:35")</script><div hidden id="S:36"></div><script>$RS("S:36","P:36")</script><div hidden id="S:37"></div><script>$RS("S:37","P:37")</script><div hidden id="S:38"></div><script>$RS("S:38","P:38")</script><div hidden id="S:39"></div><script>$RS("S:39","P:39")</script><div hidden id="S:3a"></div><script>$RS("S:3a","P:3a")</script><div hidden id="S:3b"></div><script>$RS("S:3b","P:3b")</script><div hidden id="S:3c"></div><script>$RS("S:3c","P:3c")</script><div hidden id="S:3d"></div><script>$RS("S:3d","P:3d")</script><div hidden id="S:3e"></div><script>$RS("S:3e","P:3e")</script><div hidden id="S:3f"></div><script>$RS("S:3f","P:3f")</script><div hidden id="S:40"></div><script>$RS("S:40","P:40")</script><div hidden id="S:41"></div><script>$RS("S:41","P:41")</script><div hidden id="S:42"></div><script>$RS("S:42","P:42")</script><div hidden id="S:43"></div><script>$RS("S:43","P:43")</script><div hidden id="S:44"></div><script>$RS("S:44","P:44")</script><div hidden id="S:45"></div><script>$RS("S:45","P:45")</script><div hidden id="S:46"></div><script>$RS("S:46","P:46")</script><div hidden id="S:47"></div><script>$RS("S:47","P:47")</script><div hidden id="S:48"></div><script>$RS("S:48","P:48")</script><script>$RC("B:0","S:0")</script></body></html>