Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Ensure that sandboxed code cannot create new user namespaces
User namespaces are a huge attack surface, so disallow creating new ones.
- Loading branch information