Nix (package manager)/en: Difference between revisions
Updating to match new version of source page |
Updating to match new version of source page |
||
| Line 48: | Line 48: | ||
=== Sandboxing === | === Sandboxing === | ||
When sandbox builds are enabled, Nix will setup an isolated environment for each build process. It is used to remove further hidden dependencies set by the build environment to improve reproducibility. This includes access to the network during the build outside of <code>fetch*</code> functions and files outside the Nix store. Depending on the operating system access to other resources are blocked as well (ex. inter process communication is isolated on Linux) | When sandbox builds are enabled, Nix will setup an isolated environment for each build process. It is used to remove further hidden dependencies set by the build environment to improve reproducibility. This includes access to the network during the build outside of <code>fetch*</code> functions and files outside the Nix store. Depending on the operating system access to other resources are blocked as well (ex. inter process communication is isolated on Linux). | ||
Sandboxing is enabled by default on Linux, and disabled by default on macOS. | Sandboxing is enabled by default on Linux, and disabled by default on macOS. | ||