Custom syscall interruption and notification #2
Description
Description:
Add support for custom handlers when a blocked syscall is intercepted (e.g., log, notify via callback, or prompt the user). This would allow:
Auditing denied syscalls.
Interactive permission prompts (e.g., "Plugin X tried to fork(). Allow?").
Use Case:
A security-sensitive app could log all execve attempts, or a CLI tool could ask for confirmation before file writes.