feat(sandbox): add Node.js code execution support to sandbox

sandbox/Dockerfile

@@ -1,9 +1,10 @@
 FROM python:3.12-slim
 USER root
 WORKDIR /code
-LABEL authors="Eterntiy"
 
-ARG NEED_MIRROR=0
+ARG NEED_MIRROR=1
+ENV DEBIAN_FRONTEND=noninteractive
+
 
 RUN --mount=type=cache,id=mem_apt,target=/var/cache/apt,sharing=locked \
     if [ "$NEED_MIRROR" == "1" ]; then \
@@ -17,11 +18,14 @@ RUN --mount=type=cache,id=mem_apt,target=/var/cache/apt,sharing=locked \
     apt --no-install-recommends install -y ca-certificates && \
     apt update && \
     apt install -y python3-pip pipx nginx unzip curl wget git vim less && \
+    apt install -y nodejs npm && \
     apt-get install -y --no-install-recommends tzdata libseccomp2 libseccomp-dev && \
     ln -snf /usr/share/zoneinfo/Asia/Shanghai /etc/localtime && \
     echo "Asia/Shanghai" > /etc/timezone && \
     apt install -y cargo
 
+ENV PYTHONDONTWRITEBYTECODE=1
+
 COPY ./app /code/app
 COPY ./dependencies /code/dependencies
 COPY ./lib /code/lib
@@ -33,10 +37,15 @@ COPY ./requirements.txt /code/requirements.txt
 RUN python -m venv .venv
 RUN .venv/bin/python3 -m pip install -r requirements.txt
 
-RUN cargo build --release --manifest-path lib/seccomp_python/Cargo.toml
+RUN npm install --prefix=/code/dependencies/nodejs koffi
 
-HEALTHCHECK --interval=30s --timeout=5s --start-period=10s --retries=3 \
+RUN cargo build --release --manifest-path lib/seccomp_redbear/Cargo.toml --features python3
+RUN mv lib/seccomp_redbear/target/release/libsandbox.so lib/seccomp_redbear/target/release/libpython.so
+RUN cargo build --release --manifest-path lib/seccomp_redbear/Cargo.toml --features nodejs
+RUN mv lib/seccomp_redbear/target/release/libsandbox.so lib/seccomp_redbear/target/release/libnodejs.so
+
+HEALTHCHECK --interval=30s --timeout=5s --start-period=60s --retries=3 \
     CMD curl 127.0.0.1:8194/health
 
 
-CMD [".venv/bin/python3", "main.py"]
+CMD [".venv/bin/uvicorn", "main:app", "--host", "0.0.0.0", "--port", "8194", "--log-level", "debug"]