Relax mcp-agent sandbox for rootless podman compatibility

configs/mcp.nix

@@ -42,22 +42,16 @@ in
       ];
 
       NoNewPrivileges = true;
-      ProtectSystem = "strict";
+      ProtectSystem = "full"; # "strict" blocks /run/user; "full" protects /usr and /boot
       ProtectHome = true;
       PrivateTmp = true;
       PrivateDevices = true;
       ProtectKernelTunables = true;
       ProtectKernelModules = true;
-      ProtectControlGroups = true;
       RestrictSUIDSGID = true;
-      RestrictNamespaces = true;
       LockPersonality = true;
-      MemoryDenyWriteExecute = true;
       RestrictRealtime = true;
-      ReadWritePaths = [
-        "/srv"
-        "/run/user/${toString mcpUid}"
-      ];
+      ReadWritePaths = [ "/srv" ];
     };
   };
 }