sandboxing,of upstream programs by distros
Open Source Security
Posted by Matthew Fernandez on Oct 14
I asked Alexander about this off-list in relation to his thread
“linux-distros list membership application – CIQ Rocky Linux Security
Team” but he suggested I bring it on-list instead.
Is there interest/solutions within the Rock Security SIG or other
distro’s security teams for sandboxing that package upstreams can opt into?
To step this out a bit… we have a large, old code base that was written
decades prior to current…