Running code you don’t trust is always fraught with danger. When using the Riza Code Interpreter API, we take the following precautions to make sure code execution is fully isolated.
  • Code is executed inside a secure WebAssembly sandbox.
  • WebAssembly modules are not shared across executions.
  • By default, code sandboxes have no filesystem or network access.
  • Environment variables and command line arguments must be explicitly passed into the sandbox.
  • Every execution is subject to resource limits.
  • Script inputs and outputs are not logged.
If you have any questions, or need to report an issue, please email us at security@riza.io.

Self-hosted / single-tenant

You can deploy Riza on your own infrastructure using our self-hosted product. We also plan to offer a single-tenant hosted product. If you’re interested in either of these options, please email us at hello@riza.io or schedule a call.