From 12846732b998a4adb8d931c2a4ec5cf0c373f607 Mon Sep 17 00:00:00 2001
From: Colin <colin@uninsane.org>
Date: Mon, 5 Feb 2024 18:26:21 +0000
Subject: [PATCH] programs: blanket: sandbox with bwrap

---
 hosts/common/programs/assorted.nix | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/hosts/common/programs/assorted.nix b/hosts/common/programs/assorted.nix
index 9cd29837..3bbebfbc 100644
--- a/hosts/common/programs/assorted.nix
+++ b/hosts/common/programs/assorted.nix
@@ -221,6 +221,9 @@ in
 
 
     # INDIVIDUAL PACKAGE DEFINITIONS
+    blanket.sandbox.method = "bwrap";
+    blanket.sandbox.wrapperType = "wrappedDerivation";
+
     "cacert.unbundled".sandbox.enable = false;
 
     cargo.persist.byStore.plaintext = [ ".cargo" ];