`man systemd.exec` → Sandboxing Inspiration: - [syncthing services](https://github.com/syncthing/syncthing/tree/main/etc/linux-systemd) - [miniflux service](https://github.com/miniflux/v2/blob/master/packaging/systemd/miniflux.service)
