Commit 37145531 authored by jvoisin's avatar jvoisin

Fix bubblewrap

On some machines (like mine), `/proc` has to be mounted.  Also, since
sandboxing with bubblewrap is best effort and assumes that an attacker doesn't
have control outside of the file to clean, it's safe to __try__ to enable some
bubblewrap features, and to silently fail otherwise.
parent 1678d378
Pipeline #27525 passed with stages
in 13 minutes and 30 seconds