Running systemd-analyze security matrix-synapse show following issue related to risk of priviledge escalation:
✗ NoNewPrivileges= Service processes may acquire new privileges 0.2 ✗ CapabilityBoundingSet=~CAP_SYS_ADMIN Service has administrator privileges 0.3