Y
Hacker News
new
|
ask
|
show
|
jobs
by
amarshall
453 days ago
Landlock can be used to sandbox a launched sub process, as it is here, just as the Kernel APIs used by Bubblewrap could (and sometimes are!) used by programs to sandbox themselves.