I'd like to understand how Apparmor and Firejail compare to each other: advantages, pros and cons, purposes, similarities, etc.
I might be asking to compare apples with oranges, however I've noticed several similarities. Firejail has "profiles", and they contain a list of rules that allow you to define what files an application can use. Apparmor lets you do the same, more or less. However Firejail also lets you define "capabilities", and apparently it tries to isolate the process even if it ever gains root privileges (like it is in a container?). Anyway, I can spot some similarities but I don't know either of them well enough to understand all their features and purposes.