[ghostwriter]

How do you mean it doesn't if the manual itself says that: "In addition, on Linux, builds run in private PID, mount, network, IPC and UTS namespaces to isolate them from other processes in the system"?

https://nixos.org/manual/nix/stable/command-ref/conf-file.ht...

[callahad]

"Builds" is the operative word there: that specific isolation is optional and only applies during compilation.