swaylock: sandbox with bunpen

2024-09-03 16:04:18 +00:00
parent 181bc57a8a
commit 5e38ebef4b
1 changed files with 2 additions and 2 deletions
--- a/hosts/common/programs/swaylock.nix
+++ b/hosts/common/programs/swaylock.nix
@@ -1,4 +1,4 @@
-{ config, lib, pkgs, ... }:
+{ config, lib, ... }:
 let
  cfg = config.sane.programs.swaylock;
 in
@@ -30,7 +30,7 @@ in
    #   ];
    # });
-    sandbox.method = "bwrap";
+    sandbox.method = "bunpen";
    sandbox.extraPaths = [
      # N.B.: we need to be able to follow /etc/shadow to wherever it's symlinked.
      # swaylock seems (?) to offload password checking to pam's `unix_chkpwd`,