From 53a3ddfab88c4e45be8fe4d69f70fa11672c2c90 Mon Sep 17 00:00:00 2001
From: Jelle Besseling <jelle@bigbridge.nl>
Date: Thu, 22 Jun 2023 16:44:30 +0200
Subject: [PATCH] vault: set coredump ulimit to 0

---
 nixos/modules/services/security/vault.nix | 1 +
 1 file changed, 1 insertion(+)

diff --git a/nixos/modules/services/security/vault.nix b/nixos/modules/services/security/vault.nix
index 7b9e31a8d990..18d981cdb0d2 100644
--- a/nixos/modules/services/security/vault.nix
+++ b/nixos/modules/services/security/vault.nix
@@ -221,6 +221,7 @@ in
         ProtectHome = "read-only";
         AmbientCapabilities = "cap_ipc_lock";
         NoNewPrivileges = true;
+        LimitCORE = 0;
         KillSignal = "SIGINT";
         TimeoutStopSec = "30s";
         Restart = "on-failure";