Description
Linux processes can run with unprivileged sandbox restrictions powered by the Landlock security module from a prebuilt binary package. It is useful for limiting filesystem access when testing commands or tools.
Sandboxing reduces risk but does not make unknown software automatically safe. Define allowed paths carefully and test with disposable data first.