Agent CLI: Linux sandbox preflight fails (unshare EPERM) unless run under strace; apparmor_restrict_unprivileged_userns=1

deanrie · May 28, 2026, 9:47am

Hey Billy, thanks for coming back with an update from your side.

Honestly, there’s no update on the fix yet. The ticket is still in the tracker, but I can’t share a specific ETA. I don’t want to promise a timeline I don’t have.

The fact that you’re switching to --no-sandbox or Codex is a real signal of impact, and I called that out to the engineers separately.

For now, the options are still the same:

A strace -f -o /dev/null wrapper. It works, but it’s a hack.
An AppArmor profile with userns, from the cluster admins. Template is in post #10 AppArmor cursor-sandbox profile incomplete on Linux — sandbox does not work correctly (missing network, signal, userns) - #10 by gcespedes. If you can convince them, this is the cleanest path since it keeps confinement.
--no-sandbox, as you noted, isn’t a good long-term option.

As soon as a profile with userns, uncommented ships, or we get movement on the timeline, I’ll reply in the thread.

Topic		Replies	Views
AppArmor cursor-sandbox profile incomplete on Linux — sandbox does not work correctly (missing network, signal, userns) Bug Reports sandbox , installation , linux	10	1019	March 25, 2026
Shell Sandbox preflight fails (Exit 101) Bug Reports sandbox , installation , linux	6	101	March 12, 2026
Terminal Sandbox Issue Linux Bug Reports sandbox , terminal , linux	52	5895	April 1, 2026
Sandbox processes persist after Cursor exit and cannot be killed by user Bug Reports sandbox , linux , linear-linked	4	158	June 15, 2026
Critical Governance Issue: cursor_sandbox and Seccomp blocking Root/Sudo kill signals (EACCES) Bug Reports sandbox , terminal , linux	8	232	June 17, 2026

Agent CLI: Linux sandbox preflight fails (unshare EPERM) unless run under strace; apparmor_restrict_unprivileged_userns=1

Related topics