File tree Expand file tree Collapse file tree 2 files changed +7
-0
lines changed
Expand file tree Collapse file tree 2 files changed +7
-0
lines changed Original file line number Diff line number Diff line change @@ -8,6 +8,10 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
88
99## Unreleased
1010
11+ ### Added
12+
13+ - Nix store access to the default sandbox
14+
1115### Fixed
1216
1317- Unclear error when running ` phylum init ` with an invalid organization
Original file line number Diff line number Diff line change @@ -310,6 +310,9 @@ pub fn default_sandbox() -> SandboxResult<Birdcage> {
310310 add_exception ( & mut birdcage, Exception :: ExecuteAndRead ( "/opt/homebrew" . into ( ) ) ) ?;
311311 add_exception ( & mut birdcage, Exception :: ExecuteAndRead ( "/usr/local" . into ( ) ) ) ?;
312312
313+ // NixOS stores all system files under /nix/store.
314+ add_exception ( & mut birdcage, Exception :: ExecuteAndRead ( "/nix/store" . into ( ) ) ) ?;
315+
313316 // Allow access to DNS list.
314317 //
315318 // While this is required to send DNS requests for network queries, this does
You can’t perform that action at this time.
0 commit comments