Description
Applications can be isolated with a sandboxing toolkit built around libvirt concepts.
This package is useful for administrators and developers who need controlled environments for running applications with separated resources, filesystems, or namespaces. It does not make every application safe automatically; the sandbox profile and launch configuration determine the protection.
Sandbox mistakes can expose files, devices, network access, or privileges. Review policies carefully before running untrusted software.