Description
Linux processes can run with unprivileged sandbox restrictions powered by Landlock from the development branch. It is useful for testing commands while limiting filesystem access.
Sandboxing reduces risk but does not make unknown software automatically safe. Define allowed paths carefully and test with disposable data first.