macOS
brew install bubblewraplocal Homebrew formula metadata
brew
Consultez les chemins d'installation, exécutables, métadonnées et notes de sécurité de bubblewrap pour les workflows d'agents IA.
installation
brew install bubblewraplocal Homebrew formula metadata
sudo apk add bubblewrapAlpine Linux edge package indexes · bubblewrap · Source: dl-cdn.alpinelinux.org
sudo apt install bubblewrapDebian stable package indexes · bubblewrap · Source: deb.debian.org
sudo dnf install bubblewrapFedora Rawhide package metadata · bubblewrap · Source: dl.fedoraproject.org
nix profile install nixpkgs#bubblewrapnixpkgs package indexes · pkgs/by-name/bu/bubblewrap/package.nix · Source: api.github.com
sudo pacman -S bubblewrapArch Linux sync databases · bubblewrap · Source: geo.mirror.pkgbuild.com
sudo zypper install bubblewrapopenSUSE Tumbleweed package metadata · bubblewrap · Source: download.opensuse.org
aperçu
Unprivileged sandboxing tool for Linux
historique
bubblewrap is a low-level Linux sandboxing tool that constructs restricted process environments with namespaces, bind mounts, seccomp, and related kernel features. It is best known as the small, auditable sandbox primitive used by Flatpak and similar desktop/container tools.
The bubblewrap README positions it against system-administrator container runtimes such as Docker and systemd-nspawn: those tools are not suitable to hand directly to unprivileged users, while bubblewrap is designed around unprivileged sandbox construction.
The original code predates modern unprivileged user namespaces and inherits from xdg-app helper code, which in turn derives from linux-user-chroot. Older bubblewrap also supported a setuid mode for systems without unprivileged user namespaces, but the README notes that setuid support has been removed.
The public GitHub repository was created in February 2016. The repository description identifies bubblewrap as a low-level unprivileged sandboxing tool used by Flatpak and similar projects, with topics for Linux containers and user namespaces.
bubblewrap spread because Flatpak and related desktop sandboxing systems needed a small shared primitive instead of each project carrying its own privileged helper. The README lists Flatpak, rpm-ostree unprivileged, and bwrap-oci as users or intended users.
The input package metadata shows broad Linux distribution packaging through Alpine, Debian, Fedora/dnf, Nix, Arch/pacman, Ubuntu, and openSUSE/zypper, plus Homebrew. That breadth reflects its role as plumbing for sandbox frameworks rather than as an end-user application.
Security-sensitive adoption is cautious: bubblewrap constructs a sandbox, but the actual security boundary depends on the arguments supplied by the caller. This makes it attractive for larger frameworks that own policy and want a narrow mechanism.
bwrap creates a new mount namespace whose root is an empty tmpfs, then command-line options bind selected host paths, create proc/dev views, unshare namespaces, apply seccomp filters, and run a command inside the resulting environment.
Typical direct use is scripting a constrained shell or process; typical indirect use is through Flatpak or another framework that assembles a policy-specific bwrap command. The project has no ordinary per-user config file or credentials store.
bubblewrap is package-manager-significant because a small CLI becomes part of the desktop Linux trust base. Its package version, setuid/user-namespace behavior, CVE history, and distribution kernel defaults can affect whether higher-level sandboxing stacks actually work.
It is also a clean example of separating mechanism from policy: package the tiny sandbox constructor once, let Flatpak and peers define the higher-level sandbox rules.
posture de sécurité
narrow executable package without higher-risk signals.
risque vert · confiance faible · appliance
Avant une utilisation sans surveillance par un agent, vérifiez si l'outil lit des identifiants en clair, écrit un état distant, publie des artefacts ou lance des plugins.
exécutables
| Commande | Type | Exposition | Note |
|---|---|---|---|
bwrap | cli | exécutable global |
fraîcheur
Ces signaux séparent l'âge de génération de la page, l'activité du gestionnaire de paquets et la comparaison avec les versions amont. Un retard de version n'est signalé que lorsqu'une URL de preuve et des versions comparables sont présentes.
https://github.com/containers/bubblewrap
métadonnées d'installation
| Clé du paquet | brew:bubblewrap |
|---|---|
| Version | 0.11.2 |
| Gestionnaire de paquets | Homebrew |
| Page du gestionnaire de paquets | https://formulae.brew.sh/formula/bubblewrap |
| Page d'accueil | https://github.com/containers/bubblewrap |
| Dépôt | https://github.com/containers/bubblewrap |
| Docs amont | https://github.com/containers/bubblewrap#readme |
| Licence | LGPL-2.0-or-later |
| Archive source | https://github.com/containers/bubblewrap/releases/download/v0.11.2/bubblewrap-0.11.2.tar.xz |
| Dernière mise à jour | 2026-06-11T17:22:39Z |
| Pulse | updated |
| Dépendances | libcap |
| Dépendances de compilation | docbook-xsl, libxslt, meson, ninja, pkgconf |
| Bouteille | disponible (sur arm64_linux, x86_64_linux) |
| post-install Homebrew | non défini |
| Service | aucun déclaré |
faits du registre
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | bubblewrap |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Requirements |
|
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
correspondances dans les bases sources
Les correspondances proviennent d’index externes de gestionnaires de paquets et restent séparées des liens de paquets Automic Vault locaux.
bubblewrap 0.11.0-2+deb13u1
utility for unprivileged chroot and namespace manipulation
https://github.com/containers/bubblewrap
sudo apt install bubblewrapbubblewrap
nix profile install nixpkgs#bubblewrapbubblewrap 0.9.0-1build1
utility for unprivileged chroot and namespace manipulation
https://github.com/containers/bubblewrap
sudo apt install bubblewrapbubblewrap 0.11.2-r0
Unprivileged sandboxing tool
https://github.com/containers/bubblewrap
sudo apk add bubblewrapbubblewrap-bash-completion 0.11.2-r0
Bash completions for bubblewrap
https://github.com/containers/bubblewrap
sudo apk add bubblewrap-bash-completionbubblewrap-doc 0.11.2-r0
Unprivileged sandboxing tool (documentation)
https://github.com/containers/bubblewrap
sudo apk add bubblewrap-docbubblewrap-static 0.11.2-r0
Unprivileged sandboxing tool (static binary)
https://github.com/containers/bubblewrap
sudo apk add bubblewrap-staticbubblewrap-zsh-completion 0.11.2-r0
Zsh completions for bubblewrap
https://github.com/containers/bubblewrap
sudo apk add bubblewrap-zsh-completionbubblewrap 0.11.0-4.fc44
Core execution tool for unprivileged containers
https://github.com/containers/bubblewrap/
sudo dnf install bubblewrapbubblewrap 0.11.2-1
Unprivileged sandboxing tool
https://github.com/containers/bubblewrap
sudo pacman -S bubblewrapbubblewrap 0.11.2-1.1
Core execution tool for unprivileged containers
https://github.com/containers/bubblewrap
sudo zypper install bubblewrapbubblewrap-zsh-completion 0.11.2-1.1
Zsh tab-completion for bubblewrap
https://github.com/containers/bubblewrap
sudo zypper install bubblewrap-zsh-completionpiste source
Cette page est servie par av-web depuis l'artéfact SQLite privé des paquets généré par scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.