Landlock: unprivileged access control

> The goal of Landlock is to enable to restrict ambient rights (e.g. global filesystem access) for a set of processes.
 -- https://landlock.io/

(re?)discovered by looking for "linux pledge":
 - [The feasibility of pledge\(\) on Linux · blog\.gnoack\.org](https://blog.gnoack.org/post/pledge-on-linux/) July 16, 2022 by Günther Noack