← Back to tools

landrun

Run Linux processes in a secure unprivileged sandbox using Landlock

Homepage Repository
System & Monitoring linux Go MIT

Description

Landrun lets you run any Linux process in a secure, unprivileged sandbox using Linux Landlock. Think firejail, but lightweight, user-friendly, and baked into the kernel with no root privileges required.

AI Summary

Lightweight Linux process sandboxing using kernel Landlock LSM, no root required.

Capabilities

  • + Sandbox any Linux process without root
  • + Uses kernel Landlock for security
  • + Lightweight alternative to firejail
  • + Restrict file system and network access

Use When

  • You need to sandbox untrusted processes on Linux
  • You want lightweight process isolation without root

Avoid When

  • x You are on macOS or Windows
  • x You need full container isolation
View AGENTS.md for landrun