Capability-based security for Redox: namespace and CWD as capabilities

By reimplementing these features using capabilities, we made the kernel simpler by moving complex scheme and namespace management out of it which improved security and stability by reducing the attack surface and possible bugs. At the same time, we gained a means to support more sandboxing feature

https://www.osnews.com/story/144701/capability-based-security-for-redox-namespace-and-cwd-as-capabilities/

#RedoxOS