From 111946eb1def2027cad0ef78364101865022b9b9 Mon Sep 17 00:00:00 2001
From: Colin <colin@uninsane.org>
Date: Sat, 3 Feb 2024 14:07:53 +0000
Subject: [PATCH] programs: vim, imagemagick: fix sandboxing to consider
 uncreated files

---
 hosts/common/programs/imagemagick.nix | 2 +-
 hosts/common/programs/neovim.nix      | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/hosts/common/programs/imagemagick.nix b/hosts/common/programs/imagemagick.nix
index 9d30a795..2d73cadd 100644
--- a/hosts/common/programs/imagemagick.nix
+++ b/hosts/common/programs/imagemagick.nix
@@ -4,7 +4,7 @@
     sandbox.method = "bwrap";
     sandbox.wrapperType = "wrappedDerivation";
     sandbox.whitelistPwd = true;
-    sandbox.autodetectCliPaths = true;  #< arg formatting is complicated enough that this won't always work.
+    sandbox.autodetectCliPaths = "existingFileOrParent";  #< arg formatting is complicated enough that this won't always work.
     packageUnwrapped = pkgs.imagemagick.override {
       ghostscriptSupport = true;
     };
diff --git a/hosts/common/programs/neovim.nix b/hosts/common/programs/neovim.nix
index 317c0c3d..1102aef4 100644
--- a/hosts/common/programs/neovim.nix
+++ b/hosts/common/programs/neovim.nix
@@ -88,7 +88,7 @@ in
   sane.programs.neovim = {
     sandbox.method = "bwrap";
     sandbox.wrapperType = "wrappedDerivation";
-    sandbox.autodetectCliPaths = true;
+    sandbox.autodetectCliPaths = "existingFileOrParent";
     # sandbox.whitelistPwd = true;
     sandbox.extraHomePaths = [
       # directories where i'm liable to `:e ../...`