Description
Programs can run inside a user-space root filesystem view without needing privileged chroot setup. This is useful for packaging, testing, foreign-rootfs work, and lightweight isolation when full containers are not available.
It is a command-line compatibility and isolation tool. It is not a complete security sandbox, so users should not treat it as strong containment for hostile programs.