I won’t be at the sprint, but there are a few open issues that seem to have fallen through the cracks:
-
Add support for per-user mount namespaces: this is needed to support xdg-desktop-portal, which in turn is needed to properly confine non-tirival desktop applications.
Complicating matters is that I also need to bind mount a location within a FUSE file system, which can not be done as root. Supporting this would require
snap-confine
to switch back to the regular user account but retain certain capabilities prior to configuring the mount namespace. -
Allow building in-place, and incremental builds while developing a snap: this one would greatly improve the user experience for the gnome-builder IDE integration I am working on. If a developer is concurrently working on packaging an application and making changes to the application code, it would be nice if rebuilding the snap didn’t involve a full recompilation of the entire project.