commit: c3ea9f4d2c8eb404d94604c80e2eb2b36adaa326
parent 2f6ff29dbafc1450c340f57f8d89af1fa12aeb11
Author: Haelwenn (lanodan) Monnier <contact@hacktivis.me>
Date: Thu, 20 Feb 2025 16:32:32 +0100
.local/bin/pkgdev: Add bwrap sandbox
Diffstat:
1 file changed, 15 insertions(+), 0 deletions(-)
diff --git a/.local/bin/pkgdev b/.local/bin/pkgdev
@@ -0,0 +1,15 @@
+#!/bin/execlineb -s0
+getcwd -E PWD
+importas HOME HOME
+importas -D $HOME/.cache XDG_CACHE_HOME XDG_CACHE_HOME
+bwrap
+ --die-with-parent
+ --unshare-all
+ --share-net
+ --ro-bind / /
+ --tmpfs /tmp
+ --bind $XDG_CACHE_HOME $XDG_CACHE_HOME
+ --bind $PWD $PWD
+ --proc /proc
+ --dev /dev
+ -- /usr/bin/pkgcheck "$@"
