From 8863a3c6747eab7c49b1fb45b7767b08409ce9a6 Mon Sep 17 00:00:00 2001
From: Colin <colin@uninsane.org>
Date: Wed, 14 Feb 2024 14:10:20 +0000
Subject: [PATCH] programs: wob: sandbox with bwrap

---
 hosts/common/programs/wob/default.nix | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/hosts/common/programs/wob/default.nix b/hosts/common/programs/wob/default.nix
index e737413d2..81bfa2bf2 100644
--- a/hosts/common/programs/wob/default.nix
+++ b/hosts/common/programs/wob/default.nix
@@ -31,6 +31,10 @@ in
       };
     };
 
+    sandbox.method = "bwrap";
+    sandbox.wrapperType = "wrappedDerivation";
+    sandbox.whitelistWayland = true;
+
     fs.".config/wob/wob.ini".symlink.text = ''
       timeout = 900