[Webkit-unassigned] [Bug 219196] [GTK] Sandbox in Flatpak
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Jun 13 11:33:32 PDT 2023
https://bugs.webkit.org/show_bug.cgi?id=219196
Michael Catanzaro <mcatanzaro at redhat.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |mcatanzaro at redhat.com
Resolution|--- |WONTFIX
Status|NEW |RESOLVED
--- Comment #1 from Michael Catanzaro <mcatanzaro at redhat.com> ---
The nested sandbox is intentional. Having only top-level sandboxing isn't enough because you run web content from multiple origins in a web browser, and those origins are expected to compromise the web process and try to hack each other.
The overhead should be pretty minimal. I know it's not necessary for Evolution, but it is needed in general.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20230613/84e30ad6/attachment.htm>
More information about the webkit-unassigned
mailing list