Check out FlakeHub — the best place to discover and publish Nix flakes, from Determinate Systems.

We use a single, first-party analytics cookie to focus our limited time and energy on the most important documentation. Check out our privacy policy .

Sandboxing

Isolating the Nix build process from everything else on your system

Concepts / Sandboxing

We recommend starting with the Nix quick start and consulting concept docs primarily for clarification. Feel free to click x to the right to disable this notification on all concept docs.

Whenever Nix builds anything, it sandboxes that process from everything else on the host system. Nix builds are sandboxed for a variety of reasons:

  1. The ensure reproducibility. Sandboxing ensures that no system state on the host machine affects the build outcomes.
  2. To maintain strict provenance.

Related

Derivations The Nix store Packages Realisation

Was this page helpful?
Edit this page File an issue