nixos-config/system/security/firejail.nix

{ pkgs, ... }:

{
  environment.systemPackages = with pkgs; [ firejail ];
  programs.firejail.enable = true;
  programs.firejail.wrappedBinaries = {
    #prismlauncher = {
    #  executable = "${pkgs.prismlauncher}/bin/prismlauncher";
    #  profile = ./firejail-profiles/prismlauncher.profile;
    #};
    steam = {
      executable = "${pkgs.steam}/bin/steam";
      profile = "${pkgs.firejail}/etc/firejail/steam.profile";
    };
    steam-run = {
      executable = "${pkgs.steam}/bin/steam-run";
      profile = "${pkgs.firejail}/etc/firejail/steam.profile";
    };
  };
}