Bubblewrap VS Sandboxie-Plus

Recently, I came across Chainguard and wrote the article How to build Docker Images with Melange and Apko. As a fervent supporter of Kubernetes and GitLab CI, I was eager to experiment with building images using Melange in this particular setup. GitLab's shared Runners work seamlessly with Bubblewrap, eliminating the need for additional configurations. This post is intended for enthusiasts like myself, interested... - Source: dev.to / 4 months ago

``` This is basically manually invoking what Flatpak does: https://github.com/containers/bubblewrap This is also useful for more than just security. E.G., you can test how your app would behave on a fresh install by masking your user configuration files. I personally also have a tool that uses it to basically bundle all dependencies from an entire Linux... - Source: Hacker News / 8 months ago

To, say, override the KDE plugins while testing. This is useful for me since it's rather challenging during development to actually get KDE apps to reliably load my plugins on NixOS: I think kio slaves are probably wrapped and getting other environments injected into them. Rather than bother with any tricky hacks, Linux namespaces make it relatively easy to test regardless. Bubblewrap is used internally by Flatpak... - Source: Hacker News / 10 months ago

After some research I had nailed down that I would have to use either bubblewrap, PWABuilder or Capacitor. Since all those worked with Progressive Web Apps, I set out to start with building a PWA. - Source: dev.to / 11 months ago

Well, they run inside https://github.com/containers/bubblewrap which is a sandbox system. In Flatpak you can override any "hole" that might be the default. Source: 12 months ago

Only work around is using discord inside a sand box program like Sandboxie or using window's built in sandbox windows sandbox docs. Discord actively scans your process for their exe names. Source: 10 months ago

Https://sandboxie-plus.com/ This exists for Windows, but apps can detect and change their behavior when you are hooking all of the underlying calls for filesystem/registry. - Source: Hacker News / 11 months ago

I would suggest using a lockdown browser, Mullvad browser could be an option for these games. Though it includes noscript by default. You could also use something like sandboxie to run the browser inside of. Source: 11 months ago

Beyond utilizing trusted sources and/or "just dont", Running it in sandboxie or a virtual machine. Source: 12 months ago

Whenever receiving a game from someone, be sure to talk to them a little and confirm they are who they appear to be - and even then, use Sandboxie and/or run the exe through VirusTotal to be totally sure. Source: 12 months ago