mirrors/nix-darwin
mirrors/nix-darwin
1
0
Fork 0
mirror of https://github.com/LnL7/nix-darwin.git synced 2025-04-08 10:09:38 +00:00
Code Activity

lnl: (re)enable sandboxing with extra-sandbox-paths

Browse source 
There are still some problems with frameworks, this opens up the sandbox
enough by default to work around that and make it work like expected in
most cases.
This commit is contained in:
Daiderd Jordan 2019-02-12 20:25:29 +01:00
parent e812130e5d
commit e61dcc1024
No known key found for this signature in database
GPG key ID: D02435D05B810C96
1 changed files with 3 additions and 1 deletions

4
modules/examples/lnl.nix
View file

@ -82,9 +82,11 @@
nix.binaryCachePublicKeys = [ "cache.daiderd.com-1:R8KOWZ8lDaLojqD+v9dzXAqGn29gEzPTTbr/GIpCTrI=" ];
nix.trustedBinaryCaches = [ https://d3i7ezr9vxxsfy.cloudfront.net ];
nix.trustedUsers = [ "@admin" ];
nix.useSandbox = true;
nix.package = pkgs.nixUnstable;
nix.useSandbox = true;
nix.sandboxPaths = [ "/System/Library/Frameworks" "/System/Library/PrivateFrameworks" "/usr/lib" "/dev" "/bin/sh" "/usr/bin/env" ];
programs.nix-index.enable = true;
programs.gnupg.agent.enable = true;