picnoir
/
Nix
1
0
Fork 0
Code Issues Pull Requests 1 Releases Wiki Activity
Nix/src/libstore/sandbox-minimal.sb

6 lines
143 B
Plaintext
Raw Blame History

(allow default)
; Disallow creating setuid/setgid binaries, since that
; would allow breaking build user isolation.
(deny file-write-setugid)
Reference in New Issue View Git Blame Copy Permalink