From d78b766d14493a6bd100d3a31873612db034f557 Mon Sep 17 00:00:00 2001
From: TheMainOne <theevilskely@tutanota.com>
Date: Mon, 24 Aug 2020 02:23:41 +0000
Subject: [PATCH 1/2] Restrict $HOME

---
 flatpak/content/io.gitlab.LibreWolf.json | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/flatpak/content/io.gitlab.LibreWolf.json b/flatpak/content/io.gitlab.LibreWolf.json
index cc9b0ee..973dc4e 100644
--- a/flatpak/content/io.gitlab.LibreWolf.json
+++ b/flatpak/content/io.gitlab.LibreWolf.json
@@ -35,7 +35,8 @@
         "--talk-name=org.freedesktop.ScreenSaver",
         "--talk-name=org.gtk.vfs.*",
         "--socket=wayland",
-        "--filesystem=home:rw",
+        "--filesystem=~/.librewolf:create",
+        "--filesystem=~/.mozilla:create",
         "--share=network"
     ]
 }

From 08e8fe61af4492b29ec5aaae900062e6f53a3023 Mon Sep 17 00:00:00 2001
From: TheMainOne <theevilskely@tutanota.com>
Date: Mon, 24 Aug 2020 03:32:34 +0000
Subject: [PATCH 2/2] Move content to
 ~/.var/app/io.gitlab.LibreWolf/.{mozilla,librewolf}

---
 flatpak/content/io.gitlab.LibreWolf.json | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/flatpak/content/io.gitlab.LibreWolf.json b/flatpak/content/io.gitlab.LibreWolf.json
index 973dc4e..e16a4aa 100644
--- a/flatpak/content/io.gitlab.LibreWolf.json
+++ b/flatpak/content/io.gitlab.LibreWolf.json
@@ -26,6 +26,7 @@
         "--socket=x11",
         "--socket=pulseaudio",
         "--persist=.librewolf",
+        "--persist=.mozilla",
         "--filesystem=xdg-download:rw",
         "--device=all",
         "--talk-name=org.freedesktop.FileManager1",
@@ -35,8 +36,6 @@
         "--talk-name=org.freedesktop.ScreenSaver",
         "--talk-name=org.gtk.vfs.*",
         "--socket=wayland",
-        "--filesystem=~/.librewolf:create",
-        "--filesystem=~/.mozilla:create",
         "--share=network"
     ]
 }