Warning
This is not meant for novice users. This is for those who (1) really like sandboxed apps, (2) like to tweak the permissions of their apps, and (3) are comfortable using the command line.
And of course, don’t trust strange scripts on the internet without at first reading them and understanding them.
About
This script uses flatpak as the sandbox, which is convenient as it allows you to use existing tools like Flatseal to configure the sandbox.
I built this because I like my apps sandboxed. I will mostly use it for playing games. This will let me tailor the permissions the games need perfectly, ie no network for single player games and network for multiplayer games.
And to answer the question of “Why not Steam/Heroic/Bottles/Lutris”. There’s a few reasons. This script keeps games sandboxed from each other, is lighterweight, and was made for my own enjoyment.
I’ve also been working on a bubblewrap version that reuses host binaries and libraries which I may share later. It’s lighter weight and in theory more secure (less shared with host, better for browsers thanks to having access to unprivileged namespaces).
But anyways…
How to use
There are two files. The script, called “sandbox”, and the template flatpak manifest, called “sandbox.yml”.
To run the script, manually install “sandbox.yml” to ~/.local/share/sandbox/sandbox.yml. Or, you can edit the script and update the variable TEMPLATE_PATH to where ever you want.
Then, to create a new sandbox, you just need to run
./sandbox app-name.The script roughly does the follow
- Makes sure you entered a valid app name
- Makes sure you have flatpak-builder installed (will install it if not, also note the script uses a user remote)
- Builds an empty flatpak that depends on Freedesktop 25.08 runtime
- Installs the flatpak
The first time the app is run (
flatpak run my.custom.app-name), a script will be created inside the sandboxed home called “start”. On subsequent launches, this is executable that will be run.Say if I wanted to play a Windows game, I would set the start script to
umu ./path/to/game.exe.But it can do anything. I also tested with the firefox .tar.xz and it worked without issue.
The script
sandbox.yml
app-id: domain.publisher.Name runtime: org.freedesktop.Platform runtime-version: '25.08' sdk: org.freedesktop.Sdk command: launcher finish-args: - --persist=. modules: - name: launcher-setup buildsystem: simple build-commands: - mkdir -p /app/bin # verify if 'start' exists. If not, create a default Hello World script. - | sh -c 'cat > /app/bin/launcher <<EOF #!/bin/sh TARGET="\$HOME/start" if [ ! -f "\$TARGET" ]; then echo "Creating default start script at \$TARGET..." echo "#!/bin/sh" > "\$TARGET" echo "echo Hello World from the sandbox!" >> "\$TARGET" chmod +x "\$TARGET" fi exec "\$TARGET" "\$@" EOF' - chmod +x /app/bin/launchersandbox:
#!/bin/bash # bash safety options # -e exits on failure # -u exits on unknown variables # -o pipefail exits on failed pipe set -euo pipefail ################################################################################ ### Usage Clause ### #################### # make sure argument is provided for APP_NAME if (( $# != 1)); then echo "Error: too few or too many arguments" echo "Usage: $0 app-name" exit 1 fi ################################################################################ ### Configuration ### ##################### # app details DOMAIN="my" PUBLISHER="custom" APP_NAME="$1" # flatpak manifest template location TEMPLATE_PATH="$HOME/.local/share/sandbox/sandbox.yml" ################################################################################ ### Functions ### ################# # make sure flatpak version of flatpak-builder is installed # installs it if necessary check_dependencies() { if ! flatpak list --app | grep -q org.flatpak.Builder; then echo "flatpak-builder is not installed, installing now..." flatpak --user remote-add --if-not-exists flathub https://dl.flathub.org/repo/flathub.flatpakrepo flatpak --user install --noninteractive flathub org.flatpak.Builder fi } # make sure a string only contains letters, numbers, and dashes validate_string() { local input="$1" local var_name="$2" if [[ ! "$input" =~ ^[a-zA-Z0-9-]+$ ]]; then echo "Error: $var_name ('$input') contains invalid characters." echo "Allowed: letters, numbers, and dashes only." exit 1 fi } cleanup() { # check if WORK_DIR exists to avoid errors if mktemp failed if [[ -d "$WORK_DIR" ]]; then echo "Cleaning up temporary directory..." rm -rf "$WORK_DIR" fi } ################################################################################ ### Execution ### ################# # ensure flatpak-builder is installed on host or as flatpak check_dependencies # validate DOMAIN, PUBLISHER, and APP_NAME validate_string "$DOMAIN" "DOMAIN" validate_string "$PUBLISHER" "PUBLISHER" validate_string "$APP_NAME" "APP_NAME" # finalize app ID APP_ID="$DOMAIN.$PUBLISHER.$APP_NAME" # create temporary directory in current directory WORK_DIR=$(mktemp -d -p "$PWD") # check if WORK_DIR was created if [[ ! "$WORK_DIR" || ! -d "$WORK_DIR" ]]; then echo "Error: could not create temp dir" exit 1 fi # run cleanup function on successful exit or on failure trap cleanup EXIT # copy flatpak manifest to WORK_DIR cp "$(realpath "$TEMPLATE_PATH")" "$WORK_DIR/$APP_ID.yml" # edit the app ID of the flatpak manifest sed -i "s/domain.publisher.Name/$APP_ID/g" "$WORK_DIR/$APP_ID.yml" # build the flatpak flatpak run --filesystem="$WORK_DIR" org.flatpak.Builder \ --user \ --force-clean \ --repo="$WORK_DIR/$PUBLISHER" \ "$WORK_DIR/build_dir" \ "$WORK_DIR/$APP_ID.yml" # install the flatpak flatpak --user install --noninteractive --reinstall "$WORK_DIR/$PUBLISHER" "$APP_ID"
Developer @ashx64@lemmy.world
It’s pretty depressing that you downvote those who do what you fail to do: link to the original post instead of basically stealing their content. It is very confusing to me why this is so difficult to understand and fix, it’s literally built in to most apps, such as boost.
Yet, you downvote the people who rightfully link to the OP. And no, linking the author (like you’ve done with one of my posts in the past) does not count. I didn’t know that you
stolereposted one of my posts until months later, for example.I’m unfortunately going to repeat myself twice in this post (since you did), these do not work in all frontends so it looks like you’re just stealing content. Posting the link directly in the post will always work, 100%. A link to the original author is not the same as a link to the original post, and cross post functionality in Lemmy is buggy at best.
If your problem is linking to ML, then you are defeating the point by your own logic, since according to you, all Lemmy frontends automatically add the cross post link to ML to your posts. You just shouldn’t rip posts from ML if you have a problem with merely linking to the OP and giving the original author proper credit.
It makes it worse if you’re actually using Boost to do these reposts, because that means that you’re actively stripping the automatic cross post link out.
I have done this for many months now, across thousands of crossposts, I know the crossposting system. It isn’t buggy and that menu is available on most web clients and apps from the default Lemmy UI to tesseract to photon to alexdrite to boost and voyager to jerboa. There’s the rare occasional hiccup, but it’s mostly due to fighting these stupid image proxying rules some instances do. Certainly doesn’t happen frequently enough to justify a direct link, which does in fact harm these efforts
Show me an app that doesn’t
It’s in a sub menu, adding just enough friction
I actually don’t, it’s too slow for my work flow
But, I do actively strip it from my own posts that I’m crossposting. Why? Because I despise it, it’s clear it’s just a left over from before the crossposting system was robust and the clients had their own dedicated menu for it. And it causes stupid shit like this to the posts:
Link