Run your application inside sandbox and/or apparmor. by that even if it gets hacked there are no previliges for your application to attack your entire workstation. (though we do that as well for many things installed in whonix)
Run your application inside sandbox and/or apparmor. by that even if it gets hacked there are no previliges for your application to attack your entire workstation. (though we do that as well for many things installed in whonix)