diff --git a/apparmor.d/abstractions/app/chromium b/apparmor.d/abstractions/app/chromium
index a3af128d..fec42ba9 100644
--- a/apparmor.d/abstractions/app/chromium
+++ b/apparmor.d/abstractions/app/chromium
@@ -150,10 +150,10 @@
   owner @{tmp}/.@{domain}.* rw,
   owner @{tmp}/.@{domain}*/{,**} rw,
   owner @{tmp}/@{name}-crashlog-@{int}-@{int}.txt rw,
-  owner @{tmp}/scoped_dir*/{,**} rw,
-  owner @{tmp}/tmp.* rw,
-  owner @{tmp}/tmp.*/ rw,
-  owner @{tmp}/tmp.*/** rwk,
+  audit owner @{tmp}/scoped_dir@{rand6}/{,**} rw,
+  owner @{tmp}/tmp.@{rand6} rw,
+  owner @{tmp}/tmp.@{rand6}/ rw,
+  owner @{tmp}/tmp.@{rand6}/** rwk,
 
   owner @{run}/user/@{uid}/app/org.keepassxc.KeePassXC/org.keepassxc.KeePassXC.BrowserServer rw,
   owner @{run}/user/@{uid}/org.keepassxc.KeePassXC.BrowserServer rw,
diff --git a/apparmor.d/abstractions/common/app b/apparmor.d/abstractions/common/app
index f563d803..84cd974a 100644
--- a/apparmor.d/abstractions/common/app
+++ b/apparmor.d/abstractions/common/app
@@ -16,10 +16,10 @@
   include <abstractions/bus/org.a11y>
   include <abstractions/consoles>
   include <abstractions/cups-client>
-  # include <abstractions/deny-sensitive-home>
   include <abstractions/desktop>
   include <abstractions/devices-usb>
   include <abstractions/disks-read>
+  include <abstractions/enchant>
   include <abstractions/fontconfig-cache-read>
   include <abstractions/graphics>
   include <abstractions/gstreamer>
diff --git a/apparmor.d/abstractions/common/chromium b/apparmor.d/abstractions/common/chromium
index 1fc1d155..842e1f33 100644
--- a/apparmor.d/abstractions/common/chromium
+++ b/apparmor.d/abstractions/common/chromium
@@ -20,19 +20,19 @@
   owner @{HOME}/.pki/nssdb/{cert9,key4}.db rwk,
   owner @{HOME}/.pki/nssdb/{cert9,key4}.db-journal rw,
 
-  owner @{user_share_dirs}/.org.chromium.Chromium.* rw,
+  owner @{user_share_dirs}/.org.chromium.Chromium.@{rand6} rw,
 
         /tmp/ r,
         /var/tmp/ r,
-  owner @{tmp}/.org.chromium.Chromium.* rw,
-  owner @{tmp}/.org.chromium.Chromium.*/{,**} rw,
+  owner @{tmp}/.org.chromium.Chromium.@{rand6} rw,
+  owner @{tmp}/.org.chromium.Chromium.@{rand6}/{,**} rw,
   owner @{tmp}/scoped_dir*/ rw,
   owner @{tmp}/scoped_dir*/SingletonCookie w,
   owner @{tmp}/scoped_dir*/SingletonSocket w,
   owner @{tmp}/scoped_dir*/SS w,
 
         /dev/shm/ r,
-  owner /dev/shm/.org.chromium.Chromium.* rw,
+  owner /dev/shm/.org.chromium.Chromium.@{rand6} rw,
 
   # If kernel.unprivileged_userns_clone = 1
   owner @{PROC}/@{pid}/setgroups w,
diff --git a/apparmor.d/abstractions/common/steam-game b/apparmor.d/abstractions/common/steam-game
index 719fcbd6..5a2cbd6d 100644
--- a/apparmor.d/abstractions/common/steam-game
+++ b/apparmor.d/abstractions/common/steam-game
@@ -59,6 +59,7 @@
 
   owner /dev/shm/mono.@{int} rw,
   owner /dev/shm/softbuffer-x11-@{rand6}@{c} rw,
+  owner /dev/shm/u@{uid}-Shm_@{hex4}@{h} rw,
   owner /dev/shm/u@{uid}-Shm_@{hex6} rw,
   owner /dev/shm/u@{uid}-Shm_@{hex6}@{h} rw,
   owner /dev/shm/u@{uid}-Shm_@{hex8} rw,