Hello, I'm looking to combine pandoc with something like netcat or ncat, with a custom lua reader/writer, so that pandoc can parse and respond to HTTP requests, acting essentially as an application server.

I know pandoc itself can act as a server, but I want to alter the AST, which the pandoc server can't do because of course it's sandboxed. Edit: I also don't think it allows hijacking the tcp stream to read and write arbitrary data, so that it could act as an application server, like netcat or ncat can.

Anyway, from there I want to read the request, and if a document is posted, I then want to pandoc.read it, modify the AST, then pandoc.write it out to a file. The problem is that the input is of course untrusted, but pandoc.read doesn't support sandboxing.

So I was wondering if it's possible for pandoc.read to support sandboxing?