programs: jq: sandbox
This commit is contained in:
parent
73b2594d9b
commit
f714bd8281
|
@ -587,9 +587,9 @@ in
|
|||
iw.sandbox.net = "all";
|
||||
iw.sandbox.capabilities = [ "net_admin" ];
|
||||
|
||||
# jq.sandbox.method = "bwrap";
|
||||
# jq.sandbox.wrapperType = "wrappedDerivation";
|
||||
# jq.sandbox.autodetectCliPaths = true; # liable to over-detect, but how else to sandbox?
|
||||
jq.sandbox.method = "bwrap";
|
||||
jq.sandbox.wrapperType = "wrappedDerivation";
|
||||
jq.sandbox.autodetectCliPaths = "existingFile";
|
||||
|
||||
killall.sandbox.method = "landlock";
|
||||
killall.sandbox.wrapperType = "wrappedDerivation";
|
||||
|
|
Loading…
Reference in New Issue
Block a user