|
|
f16a68f5bb
|
element-desktop: use native wayland, not Xwayland
|
2024-03-23 18:51:41 +00:00 |
|
|
|
5205251f6f
|
programs: xwayland: sandbox it without exposing net access
|
2024-03-23 15:33:23 +00:00 |
|
|
|
cdac23211c
|
nixpkgs: 2024-03-13 -> 2024-03-21; others
```
• Updated input 'nixpkgs-next-unpatched':
'github:nixos/nixpkgs/4ee0840ba2ecc50458ab1677d108afcd691f4815' (2024-03-13)
→ 'github:nixos/nixpkgs/33cddc79aa062e243c59d3ac36b8b938f267748a' (2024-03-21)
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/2dbc8f62d8af7a1ab962e4b20d12b25ddcb86ced' (2024-03-13)
→ 'github:nixos/nixpkgs/783b241f949bea90e3347ce516ad8af84bde3126' (2024-03-21)
• Updated input 'nixpkgs-wayland':
'github:nix-community/nixpkgs-wayland/771cb198c281db6918829651f194bf4db32e342d' (2024-03-13)
→ 'github:nix-community/nixpkgs-wayland/7d053c33b7a130ddada43ba09b089244390b3a23' (2024-03-19)
• Updated input 'nixpkgs-wayland/lib-aggregate':
'github:nix-community/lib-aggregate/45b75bf534592c0c1c881a1c447f7fdb37a87eaf' (2024-03-11)
→ 'github:nix-community/lib-aggregate/f890211817b941d9ed9de48d62ba8553fa2c20f3' (2024-03-17)
• Updated input 'nixpkgs-wayland/lib-aggregate/nixpkgs-lib':
'github:nix-community/nixpkgs.lib/630ebdc047ca96d8126e16bb664c7730dc52f6e6' (2024-03-10)
→ 'github:nix-community/nixpkgs.lib/fa827dda806c5aa98f454da4c567991ab8ce422c' (2024-03-17)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/e52d8117b330f690382f1d16d81ae43daeb4b880' (2024-03-11)
→ 'github:Mic92/sops-nix/83b68a0e8c94b72cdd0a6e547a14ca7eb1c03616' (2024-03-17)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/b17375d3bb7c79ffc52f3538028b2ec06eb79ef8' (2024-03-10)
→ 'github:NixOS/nixpkgs/6dc11d9859d6a18ab0c5e5829a5b8e4810658de3' (2024-03-16)
• Updated input 'uninsane-dot-org':
'git+https://git.uninsane.org/colin/uninsane?ref=refs/heads/master&rev=bb10cd8853d05191e4d62947d93687c462e92c30' (2024-02-15)
→ 'git+https://git.uninsane.org/colin/uninsane?ref=refs/heads/master&rev=9a3b2d74c3e6d177fd1317d03f4e3eecca7beb7b' (2024-03-19)
```
|
2024-03-21 18:03:37 +00:00 |
|
|
|
40e30cf2f8
|
programs: make sandbox.wrapperType default to "wrappedDerivation" and remove everywhere i manually set that
|
2024-02-28 17:39:00 +00:00 |
|
|
|
67536e3c1f
|
programs: assorted: correct sandbox paths now that Pictures/Videos/Books are categorized
i don't like this Pictures/ approach though. i may reconsolidate some of those
|
2024-02-27 21:37:20 +00:00 |
|
|
|
d1de9efde1
|
sway: port xwayland use to sane.programs API
|
2024-02-21 23:32:10 +00:00 |
|
|
|
b2fcf6fdfd
|
programs: messengers (fractal, signal, dino, tuba): add media libraries to the sandbox
|
2024-02-15 00:49:24 +00:00 |
|
|
|
080bd856ec
|
programs: sandboxing: only permit wayland socket access to those specific apps which require it
|
2024-02-14 01:49:49 +00:00 |
|
|
|
1a18ed533b
|
programs: don't include dbus in the sandbox by default
|
2024-02-13 11:58:33 +00:00 |
|
|
|
6eaaeeb91a
|
programs: remove audio from the sandbox by default
|
2024-02-13 11:14:38 +00:00 |
|
|
|
c9af5bf9b4
|
programs: sandboxing: enable net isolation for most sandboxed programs
|
2024-02-08 21:51:32 +00:00 |
|
|
|
db6ba61429
|
programs: sandbox more apps with wrapperType=wrappedDerivation
|
2024-01-29 13:45:57 +00:00 |
|
|
|
d91759068c
|
element-desktop: sandbox with bwrap
|
2024-01-24 05:37:46 +00:00 |
|
|
|
59187a0ec0
|
programs: allow running binaries in a netns-style firejail
|
2024-01-20 11:11:12 +00:00 |
|
|
|
12adb9f10a
|
element-desktop: use electron-bin instead of from-source electron
|
2023-11-18 22:06:30 +00:00 |
|
|
|
28d4a4b065
|
persistence: move stores behind a byStore attr to support disabling persistence altogether (for e.g. rescue image)
|
2023-11-08 15:33:15 +00:00 |
|
|
|
59f82cea27
|
doc: element: leave notes for if element fails to render, again
|
2023-09-09 07:11:25 +00:00 |
|
|
|
8a126d0a64
|
programs: explicitly declare dependencies on gnome-keyring
|
2023-08-02 07:40:57 +00:00 |
|
