'seccomp' is allowed as of snapd 2.0.9. 'setpriority' is bug #1580968 and bug #1577520 and we'll be able to allow it in snapd 2.0.11. /dev/shm/org.chromium.S4ccxx is bug #1577514 (which you can fix in your code now if you adjust the path to be /dev/shm/snap.firefox.XXXXXX'. Soon you'll be able to redirect the path as described in the bug). 'unshare' is bug #1586547 and is being investigated (in the meantime, you could disable userns in your build).
@{PROC}/@{pid}/smaps I'll get fixed up for snapd 2.0.11 (2.0.10 is already cut for release).
/proc/2952/mountinfo is likely just noise but you can also add 'mount-observe' to your plugs.
'seccomp' is allowed as of snapd 2.0.9. 'setpriority' is bug #1580968 and bug #1577520 and we'll be able to allow it in snapd 2.0.11. /dev/shm/ org.chromium. S4ccxx is bug #1577514 (which you can fix in your code now if you adjust the path to be /dev/shm/ snap.firefox. XXXXXX' . Soon you'll be able to redirect the path as described in the bug). 'unshare' is bug #1586547 and is being investigated (in the meantime, you could disable userns in your build).
@{PROC} /@{pid} /smaps I'll get fixed up for snapd 2.0.11 (2.0.10 is already cut for release).
/proc/2952/ mountinfo is likely just noise but you can also add 'mount-observe' to your plugs.