Interesting. Thanks for investigating this!FWIW I don’t think either change meaningfully degrades the security of the sandbox being constructed here, so I think it’s fine to take on either or both changes conservatively. 1. The sandbox already allows `open` (unfortunately), so adding `openat` doesn’t seem to me a semantic expansion.
2. I’m not aware of anything security-relevant you can do with `madvise`.
