A colon-separated list of paths to privately mount during scriptlet execution. Typical examples would be `/tmp` to protect against insecure temporary file usage inside scriptlets, and `/home` to prevent scriptlets from accessing user home directories. When path unsharing is enabled, any mounts made from scriptlets are also private to the scriptlet (and vice versa, mount changes on the host are not visible to the scriptlet).

Private mounts in chroot-operations is unimplemented.

Non-zero value disables network access during scriptlet execution.