diff --git a/apparmor.d/groups/pacman/makepkg b/apparmor.d/groups/pacman/makepkg
index d5abc07d..b2c043a6 100644
--- a/apparmor.d/groups/pacman/makepkg
+++ b/apparmor.d/groups/pacman/makepkg
@@ -28,14 +28,20 @@ profile makepkg @{exec_path} {
 
   file,
 
-  @{bin}/gpg{,2}  Cx -> gpg,
-  @{bin}/gpgconf  Cx -> gpg,
-  @{bin}/gpgsm    Cx -> gpg,
-  @{bin}/sudo     Cx -> sudo,
+  @{bin}/gpg{,2}                Cx -> gpg,
+  @{bin}/gpgconf                Cx -> gpg,
+  @{bin}/gpgsm                  Cx -> gpg,
+  @{bin}/sudo                   Cx -> sudo,
+
+  deny capability sys_ptrace,
+  deny ptrace read,
 
   profile gpg {
     include <abstractions/base>
     include <abstractions/consoles>
+    include <abstractions/devices-usb>
+
+    network netlink raw,
 
     @{bin}/gpg{,2} mr,
     @{bin}/gpgconf mr,