RepoRadar
Leave a Tip
Item detail

rivet-dev/secure-exec

rivet-dev/secure-exec is an Apache-2.0 Rust-backed npm-installable library that lets Node.js code execute user-supplied or agent-generated JavaScript without containers or VMs by leveraging the same V8 isolate technology as Cloudflare Workers.

Open source Back to radar
Score8.2
Popularity6.2
Riskconditional
TierGold
Score breakdown
Usefulness8.0
Novelty9.0
Momentum6.0
Maturity6.6
Open-source/build8.4
Evidence7.2
Workflow potential9.0
Setup ease6.4

Popularity is tracked separately. Support, ads, sponsorships, and tips never affect these signals.

Why it matters

Useful for agent and app developers who need a low-latency, low-overhead way to run untrusted JavaScript from coding agents, MCP servers, or end-user inputs.

Who should use it

agent platforms that need to run untrusted JavaScript safelyMCP server authors exposing code-execution tools without full sandbox infraplatform teams building code-interpreter features in their Node backendtool builders wiring dynamic plugins into existing services

Who should skip it

Skip if the source link, docs, or setup requirements do not match your workflow.

Risk explanation

It executes arbitrary JavaScript on the host, so any escape from the V8 isolate model would expose the host process; review the security model and keep it out of the privileged request path until validated.

Evidence links

Closest alternatives / related signals

sandboxv8agent-inframcpcode-executionnode