As an example we will look at man 1 bwrap. Bubblewrap allows us to sandbox an application, not too dissimilar to docker. Flatpaks use bubblewrap as part of their sandbox. Bubblewrap can optionally take in a list of syscalls to filter. The filter is expressed as a BPF(Berkley Packet Filter program - remember when I said docker gives you a friendlier interface to seccomp?) program. Below is a short program... - Source: dev.to / about 1 month ago

I have already been using bubblewrap[1] to isolate KeePassXC from the network and more (the only access it has is to its own private directory and the Wayland socket). I wouldn't recommend relying on devs or maintainers to do application isolation work for you. [1] <https://github.com/containers/bubblewrap>. - Source: Hacker News / about 1 month ago

Recently, I came across Chainguard and wrote the article How to build Docker Images with Melange and Apko. As a fervent supporter of Kubernetes and GitLab CI, I was eager to experiment with building images using Melange in this particular setup. GitLab's shared Runners work seamlessly with Bubblewrap, eliminating the need for additional configurations. This post is intended for enthusiasts like myself, interested... - Source: dev.to / 6 months ago

``` This is basically manually invoking what Flatpak does: https://github.com/containers/bubblewrap This is also useful for more than just security. E.G., you can test how your app would behave on a fresh install by masking your user configuration files. I personally also have a tool that uses it to basically bundle all dependencies from an entire Linux... - Source: Hacker News / 9 months ago

To, say, override the KDE plugins while testing. This is useful for me since it's rather challenging during development to actually get KDE apps to reliably load my plugins on NixOS: I think kio slaves are probably wrapped and getting other environments injected into them. Rather than bother with any tricky hacks, Linux namespaces make it relatively easy to test regardless. Bubblewrap is used internally by Flatpak... - Source: Hacker News / 11 months ago

Have you thanked a maintainer of an open-source project you use today? If not, go ahead and reach out to them on social media and say thank you. Does that scare you a little bit? That's OK, why not share their project on social media, sponsor them on GitHub or Open Collective, write or film a tutorial, file a great bug report, pick up one of the good-first-bugs, or star their project on GitHub? These are just some... - Source: dev.to / 3 months ago

There have been steps forward in the direction of making donation easier: https://github.com/sponsors , which can serve as a "fiscal host." The advantage here is that the default rule at law for how a group of developers working together will be treated is partnership, which means joint and several liability. Working with a fiscal host partitions individual liability from group liability. But there are still open... - Source: Hacker News / 7 months ago

Are there any FinTech or Incubators out there to fund Co-ops? I am thinking of how https://opencollective.com/ operates for Open Source and Non-Profits. Source: 8 months ago

You know when you envision an idea, and along the way you see someone who made this idea a reality, well, opencollective.com is exactly that. Source: 10 months ago

Going forward, The Odin Project will be completely funded by community donations through Open Collective. A platform designed for transparently collecting and managing funds for open-source projects just like ours. Open Collective will allow The Odin Project to secure vital financial resources directly from the community of developers and learners that benefit from the platform. - Source: dev.to / 11 months ago