Hi. I know 2 way to avoid case in which WineHQ can run viruses or spyware:
1) sandbox WineHQ application in block by Firejail's WineHQ profile
2) create new user account without any root powers then change WineHQ binary ownership & permission as in this guide:
https://forums.fedoraforum.org/showthre ... -amp-Usage
Of these 2 approaches, which is more secure one ?