A quick look at __pledge_open(2)
Summary
A technical look at OpenBSD's pledge_open(2) syscall and its role in libc. The piece highlights a potential sandbox bypass via Pinsyscall, shows a code example aimed at circumventing pledge restrictions, and discusses why such bypasses are challenging and what they mean for secure application design.