Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

This is a perfect use case for unveil(): you have a program that wants to operate on a specific directory (your repo), and never outside of it.


Dev tools are written with people running macOS. They already have trouble following XDG instead of polluting one's home directory, imagine asking them to use unveil.

Also AFAIK unveil is an OpenBSD thing. Does VSCode even do BSDs? chroot is POSIX and none of the junior devs employed by Microsoft are aware of it.


Of course, I meant this is an argument for other operating systems to implement a similar syscall. Maybe NT/Darwin have something similar that I'm not aware of.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: