colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity

cargo,rust-analyzer: sandbox with bunpen

Browse Source
This commit is contained in:
Colin
2024-09-03 02:46:54 +00:00
parent 8a2a41ecc9
commit d11f3152d0
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
hosts/common/programs/assorted.nix
View File

@@ -440,7 +440,7 @@ in
"cacert.unbundled".sandbox.enable = false; #< data only "cacert.unbundled".sandbox.enable = false; #< data only
cargo.persist.byStore.plaintext = [ ".cargo" ]; cargo.persist.byStore.plaintext = [ ".cargo" ];
cargo.sandbox.method = "bwrap"; # probably this is too restrictive; i'm sandboxing it for rust-analyzer / neovim LSP cargo.sandbox.method = "bunpen"; # probably this is too restrictive; i'm sandboxing it for rust-analyzer / neovim LSP
cargo.sandbox.whitelistPwd = true; cargo.sandbox.whitelistPwd = true;
cargo.sandbox.net = "all"; cargo.sandbox.net = "all";
cargo.sandbox.extraHomePaths = [ "dev" "ref" ]; cargo.sandbox.extraHomePaths = [ "dev" "ref" ];
@@ -1064,7 +1064,7 @@ in
rsync.sandbox.net = "clearnet"; rsync.sandbox.net = "clearnet";
rsync.sandbox.autodetectCliPaths = "existingOrParent"; rsync.sandbox.autodetectCliPaths = "existingOrParent";
rust-analyzer.sandbox.method = "bwrap"; rust-analyzer.sandbox.method = "bunpen";
rust-analyzer.sandbox.whitelistPwd = true; rust-analyzer.sandbox.whitelistPwd = true;
rust-analyzer.suggestedPrograms = [ rust-analyzer.suggestedPrograms = [
"cargo" "cargo"