#bubblewrap — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #bubblewrap, aggregated by home.social.
-
OpenAI says Windows lacked the sandboxing tools Linux already had
https://web.brid.gy/r/https://nerds.xyz/2026/05/openai-linux-windows-codex-sandbox/
-
OpenAI says Windows lacked the sandboxing tools Linux already had
https://fed.brid.gy/r/https://nerds.xyz/2026/05/openai-linux-windows-codex-sandbox/
-
OpenAI says Windows lacked the sandboxing tools Linux already had
https://web.brid.gy/r/https://nerds.xyz/2026/05/openai-linux-windows-codex-sandbox/
-
OpenAI says Windows lacked the sandboxing tools Linux already had
https://fed.brid.gy/r/https://nerds.xyz/2026/05/openai-linux-windows-codex-sandbox/
-
OpenAI says Windows lacked the sandboxing tools Linux already had
https://web.brid.gy/r/https://nerds.xyz/2026/05/openai-linux-windows-codex-sandbox/
-
Telegram Mini App для PWA-приложения: как я перешёл с TWA для RuStore и что выяснил по дороге
Я разрабатываю PWA для голосовой практики английского. Несколько раз пытался опубликовать его в RuStore через Trusted Web Activity (TWA) — Google-обёртку, которая упаковывает PWA в подписанный Android AAB. После четырёх отказов модерации я понял, что для моего класса приложений TWA в RuStore не работает, и за день переключился на Telegram Mini App. Эта статья — не история стартапа, а разбор технических решений:
https://habr.com/ru/articles/1029400/
#telegram_mini_app #twa #trusted_web_activity #rustore #bubblewrap #pwa #android #hmac #авторизация
-
Telegram Mini App для PWA-приложения: как я перешёл с TWA для RuStore и что выяснил по дороге
Я разрабатываю PWA для голосовой практики английского. Несколько раз пытался опубликовать его в RuStore через Trusted Web Activity (TWA) — Google-обёртку, которая упаковывает PWA в подписанный Android AAB. После четырёх отказов модерации я понял, что для моего класса приложений TWA в RuStore не работает, и за день переключился на Telegram Mini App. Эта статья — не история стартапа, а разбор технических решений:
https://habr.com/ru/articles/1029400/
#telegram_mini_app #twa #trusted_web_activity #rustore #bubblewrap #pwa #android #hmac #авторизация
-
Telegram Mini App для PWA-приложения: как я перешёл с TWA для RuStore и что выяснил по дороге
Я разрабатываю PWA для голосовой практики английского. Несколько раз пытался опубликовать его в RuStore через Trusted Web Activity (TWA) — Google-обёртку, которая упаковывает PWA в подписанный Android AAB. После четырёх отказов модерации я понял, что для моего класса приложений TWA в RuStore не работает, и за день переключился на Telegram Mini App. Эта статья — не история стартапа, а разбор технических решений:
https://habr.com/ru/articles/1029400/
#telegram_mini_app #twa #trusted_web_activity #rustore #bubblewrap #pwa #android #hmac #авторизация
-
Telegram Mini App для PWA-приложения: как я перешёл с TWA для RuStore и что выяснил по дороге
Я разрабатываю PWA для голосовой практики английского. Несколько раз пытался опубликовать его в RuStore через Trusted Web Activity (TWA) — Google-обёртку, которая упаковывает PWA в подписанный Android AAB. После четырёх отказов модерации я понял, что для моего класса приложений TWA в RuStore не работает, и за день переключился на Telegram Mini App. Эта статья — не история стартапа, а разбор технических решений:
https://habr.com/ru/articles/1029400/
#telegram_mini_app #twa #trusted_web_activity #rustore #bubblewrap #pwa #android #hmac #авторизация
-
Wrote a silly script to showcase how to use unshare + chroot/pivot_root in order to manually enter a #linux #chroot / #container without needing #root privileges:
https://gist.github.com/mid-kid/9293f4f0617052b9c3aa45422fb89f90
I rarely see anyone mention how this can be done without needing to reach for #bubblewrap or systemd-nspawn, and I think it's important to see how you can leverage the primitives that drive container technology.
The script can be simplified, but not without sacrificing correctness. I hope the comments help.
-
It's 2026 and people still use suid sandboxes: https://github.com/containers/bubblewrap/security/advisories/GHSA-xq78-7hw4-5jvp #linux #security #bubblewrap
-
Now I'm thinking about a new strategy:
- stop service
- make #btrfs snapshot (seconds at max)
- restart service
- run #borgBackup from snapshot, but via #bubbleWrap so it sees it as the original path and inodes for consistency&performance!
- run as many borg backups as desired to any remote, even in parallel, as the service is running againThoughs?
-
Would you be interested in cooperating to build the next #dangerzone #flatpak #snap #ai/#gpu #rustlang #sandbox (insert-hype-here) based on #sydbox rather than #bubblewrap #firejail #snap-confine #gvisor (insert-sandbox-here)? We have #sydbox the application kernel, pandora the automatic profile writer, and syd-tui as a basic tui frontend using #ratatui, however we lack more practical tooling for wider adoption. Dreams, ideas, plans, all sorts of feedback, and contributions are equally welcome!
-
-
6 Ways to Keep Your Greenhouse Warm This Winter https://www.allforgardening.com/1572939/6-ways-to-keep-your-greenhouse-warm-this-winter/ #+thermalMass #BubbleWrap #ChrisBonnett #ColdProtection #ExpertAdvice #FoamInsulation #garden #gardening #GardeningExpress #greenhouse #HorticulturalBlanket #insulation #Mulch #plants #Ventilation #WinterGardening
-
Sometimes devil is in the details. #POSIX requires option parsing to terminate when the initial non-option argument is encountered. This is different than the #GNU style which continues parsing arguments until an explicit "--" is encountered. The latter has been susceptible to command line injection attacks. One recent example is in #bubblewrap & #flatpak combo with CVE-2024-32462. Otoh, #sydbox and all its utilities use posixly correct option parsing: https://nvd.nist.gov/vuln/detail/cve-2024-32462 #linux #security
-
Good to know.
#Bubblewrap creates isolated environments using #Linux kernel namespaces. It achieves this by creating a new, completely empty mount namespace where the root is mounted on a tmpfs. When installed, Bubblewrap provides a bwrap CLI tool that can be used to wrap any command (with caveats). Of special interest are coding agents like #OpenCode, Claude Code etc.
-
Bubblewrap: A nimble way to prevent agents from accessing your .env files
#HackerNews #Bubblewrap #nimble #prevent #agents #env #files #coding #secrets #security
-
Brits with gardens urged to put bubble wrap in sheds in December https://www.allforgardening.com/1538111/brits-with-gardens-urged-to-put-bubble-wrap-in-sheds-in-december/ #BackGarden #BubbleWrap #ChristmasShopping #garden #GardenShed #OnlineShopping #packages #winter
-
Brits with gardens urged to put bubble wrap in sheds in December https://www.allforgardening.com/1538111/brits-with-gardens-urged-to-put-bubble-wrap-in-sheds-in-december/ #BackGarden #BubbleWrap #ChristmasShopping #garden #GardenShed #OnlineShopping #packages #winter
-
Don’t throw away bubble wrap as it has surprising garden use https://www.allforgardening.com/1537156/dont-throw-away-bubble-wrap-as-it-has-surprising-garden-use/ #BubbleWrap #garden #gardening #insulation #winter #WinterGarden
-
CI/CD Week Day 2! Security is key! Running directly on the host (bareMetal) is fast, but system admins need control over what processes run.
Enter Executor 2: bwrap (bubblewrap). This creates a very light container/sandbox, similar to what Flatpak uses!
You get the same execution capability (e.g., running `echo "hello" > README.md`), but in a confined, isolated way. It's the best of both worlds: speed and security!
Ready for the executor that lets you run any process? Follow me for tomorrow's reveal! 🐳
#CICD #DevOps #Bubblewrap #Security #Containers -
💥 Bubble wrap bursts enable power-free acoustic testing
https://techxplore.com/news/2025-10-enable-power-free-acoustic.html
-
🍾🤡 #Bubblewrap, the high-tech innovation to #NetBSD, because who needs robust security when you can just pop your way to safety? 🎈✨ Welcome to the future of sandboxing: as strong as the packaging your last Amazon delivery came in. 🚀🛍️
https://blog.netbsd.org/tnf/entry/gsoc2025_bubblewrap_sandboxing #TechInnovation #Sandboxing #SecurityFail #FutureOfTech #HackerNews #ngated -
Using bubblewrap to add sandboxing to NetBSD
https://blog.netbsd.org/tnf/entry/gsoc2025_bubblewrap_sandboxing
#HackerNews #bubblewrap #NetBSD #sandboxing #GSoC2025 #security #technology
-
@Imperor flatpak uses bubblewrap for sandboxing, unless I am mistaken, then flatseal configures those bubblewrap permissions. So, you could start your programs with it too. Another way would be AppArmor. Or, if you want something to keep your base system clean (this does not bring any security advantages) you could use distrobox.
#linux #sandboxing #security #bubblewrap #apparmor #gnulinux #flatpak
-
I spent two hours yesterday debugging why my program which uses #bubblewrap and #overlayfs suddenly stopped working yesterday. Turns out, it was a kernel update and just needed a reboot...!
-
A worthwhile project to harden your #NixOS even more by sandboxing applications via #bubblewrap: jail.nix.
(I was using NixPak before which is also nice, but I find jail.nix to be of a nicer design, more flexible and minimalist at the same time).
It is somewhat minimal and strict at the moment (for instance, It doesn't yet automatically forward the '*.desktop' files from the jailed apps), but perhaps that's one of the reasons I like it: it's fairly clear where things come from.
-
Bello Bear Bit 15 Bubble Wall Paper - Watch & Follow on YouTube https://youtube.com/shorts/l5D46a9ELl4?feature=share
-
Bello Bear Bit 15 Bubble Wall Paper - Watch & Follow on YouTube https://youtube.com/shorts/l5D46a9ELl4?feature=share
-
Why Avoid Binaries in Early-Stage Projects?
Auditability: Source code is readable, understandable, and can be version-controlled. Binaries (especially opaque ones) may include unknown payloads, telemetry, or hardcoded calls. #bubblewrap #firejail
-
Updated #sydbox to 3.35.0: hardened #Landlock, empty mount namespaces using pivot_root and root:tmpfs a la #bubblewrap, many bug fixes thx to LTP, many bug/portability fixes thx to #alpine #linux folks. New utilities #syd-fd and #syd-x. See the release mail for more information: https://is.gd/syd_3_35_0 #exherbo #hacking #security
-
For those who are used to #Bubblewrap on #Linux:
@tobykurien has created a similar, very simple-to-use script for #FreeBSD offering a sandbox configuration that is compatible with Bubblewrap:
-
#SeTunneKun avaat paketin, ja näet ekaa kertaa elämässäsi JÄTTIKUPLAMUOVIA!
Koko vartalossa ja aivoissa kihelmöi - kohta koittaa täyttymys!
Ja sitten.
Ja sitten.
SITTEN SE EI PUHKEA!
#antikliimaksi #pettymys #kuplamuovi #BubbleWrap #antiklimax
-
Just playing with #bubblewrap and thinking that it’s not so much air that absorbs incident force but the #polymer film of the bubble. You can feel the #modulus of the material as you press on it. Air doesn’t respond like that, but a pretensioned #polyethylene film does. #polymers #materials #materialscience #chemistry #cantturnitoff #AlwaysThinkingAboutPolymers
