Seccomp

Seccomp (Secure Computing Mode) is a security feature in Linux that limits what a program can do at the system level. It creates a restricted environment by filtering or blocking certain system calls the program might attempt to use, reducing the risk of malicious actions or exploits. Essentially, it acts like a safety gate, allowing only essential operations and preventing potentially harmful activities, which helps protect the entire system from compromised or malicious software.