diff --git a/modules/services/flameshot.nix b/modules/services/flameshot.nix
index ed523561d..8a0d6db23 100644
--- a/modules/services/flameshot.nix
+++ b/modules/services/flameshot.nix
@@ -34,6 +34,15 @@ in {
         Environment = "PATH=${config.home.profileDirectory}/bin";
         ExecStart = "${package}/bin/flameshot";
         Restart = "on-abort";
+
+        # Sandboxing.
+        LockPersonality = true;
+        MemoryDenyWriteExecute = true;
+        NoNewPrivileges = true;
+        PrivateUsers = true;
+        RestrictNamespaces = true;
+        SystemCallArchitectures = "native";
+        SystemCallFilter = "@system-service";
       };
     };
   };