libseccomp: library for working with the Linux seccomp filter libseccomp could allow unintended access to system calls.