[ANN] restricted 2.0.0 limit which system operations and which parts of the filesystem your program can access

removewingman · April 2, 2026, 6:27pm

Hello,

I am happy to announce a new version of restricted.

This library lets you limit which system operations and which parts of the filesystem your program can access. Call it as early as possible in your program so that the rest of the code runs with reduced privileges. Currently, actual enforced restrictions are implemented for these operating systems:

OpenBSD
Linux (only filesystem view)

Even on other operating systems, you can still use restricted to document which privileges your program needs. Users can then test if your program respects these promises with tools such as pledge on Linux. Enjoy

CHANGELOG:

tested on:
- x86_64 openbsd (16/16 Tests passed)
- x86_64-alpine-linux (Landlock ABI version: 7) (4/12 Tests passed: file_read_unv, file_write_unv, file_create_unv_linux, file_cwrr_unv_linux)

Added

API: exec promises and accesses optional
OpenBSD: exec promises

Removed

SystemOperation.TmpPath (deprecated see: pledge (2))

Topic		Replies	Views
[ANN] restricted 1.2.0 limit which system operations and which parts of the filesystem your program can access Community announce	0	74	January 23, 2026
[ANN] restricted 1.1 - Restrict possible system operations and filesystem view of your program Community announce	4	415	January 26, 2026
[ANN] Openbsd 1.0 Community announce	0	230	October 12, 2024
Opam's use of bwrap Ecosystem opam	8	1186	November 3, 2023
[ANN] v0.14 release of Jane Street packages Community announce	16	3649	June 20, 2021

[ANN] restricted 2.0.0 limit which system operations and which parts of the filesystem your program can access

Added

Removed

Related topics