caption: Allow the audio sandbox to run
default: null
desc: |-
This policy controls the audio process sandbox.
If this policy is enabled, the audio process will run sandboxed.
If this policy is disabled, the audio process will run unsandboxed and the WebRTC audio-processing module will run in the renderer process.
This leaves users open to security risks related to running the audio subsystem unsandboxed.
If this policy is not set, the default configuration for the audio sandbox will be used, which may differ per platform.
This policy is intended to give enterprises flexibility to disable the audio sandbox if they use security software setups that interfere with the sandbox.
example_value: true
features:
dynamic_refresh: false
per_profile: false
items:
- caption: Always sandbox the audio process
value: true
- caption: Never sandbox the audio process
value: false
- caption: Use the default configuration for the audio sandbox
value: null
owners:
- file://services/audio/OWNERS
- [email protected]
schema:
type: boolean
supported_on:
- chrome.win:79-
- chrome.linux:79-
- chrome.mac:79-
tags:
- system-security
type: main
Codebase Browser
chromium