Open Bsd Pledge

This is an OpenBSD change which demonstrates how widely UnprivilegedSandboxing can be applied, if it is made easy enough:

Taming 100s of userland programs: https://marc.info/?l=openbsd-tech&m=144393692615042&w=2

(Remark: pledge() used to be called tame().)