--- a/checker.profile	Fri Jun 01 01:32:11 2018 +0800
+++ b/checker.profile	Sun Feb 09 21:06:53 2020 +0800
@@ -7,6 +7,7 @@
 include /etc/firejail/disable-common.inc
 include /etc/firejail/disable-programs.inc
 include /etc/firejail/disable-passwdmgr.inc
+include /etc/firejail/disable-xdg.inc
 
 whitelist ~/candolint
 read-only ~/candolint
@@ -19,18 +20,27 @@
 whitelist ~/.npm/
 
 caps.drop all
+machine-id
 netfilter
+no3d
+nodbus
+nodvd
+nogroups
 nonewprivs
-nogroups
 noroot
 nosound
-no3d
-protocol inet,inet6,netlink
+notv
+nou2f
+novideo
+protocol inet,inet6
 seccomp
 shell none
+tracelog
+x11 none
 
 dns 8.8.4.4
 dns 8.8.8.8
 
+disable-mnt
 private-dev
 private-tmp