# NOTE: allows full privileged access

ro-bind $XDG_RUNTIME_DIR/pulse
ro-bind $XDG_RUNTIME_DIR/pipewire-0