Firejail: /usr/bin/riot-desktop: line 3: 8 Trace/breakpoint trap (core dumped) electron /usr/lib/riot/ "$@"

Commenting seccomp in electron.profile seems to fix this.

@qazip can you look in your syslog what syscall is bloked. (sudo journalctl | grep syscall)

Jul 02 11:42:13 laptop audit[14849]: SECCOMP auid=1000 uid=1000 gid=1001 ses=1 pid=14849 comm="electron" exe="/usr/lib/electron/electron" sig=31 arch=c000003e syscall=161 compat=0 ip=0x7f3446fede3d code=0x0
Jul 02 11:42:13 herethere kernel: audit: type=1326 audit(1562064133.927:4000): auid=1000 uid=1000 gid=1001 ses=1 pid=14849 comm="electron" exe="/usr/lib/electron/electron" sig=31 arch=c000003e syscall=161 compat=0 ip=0x7f3446fede3d code=0x0
                                                   #0  0x00007f3446fede3d syscall (libc.so.6)

Does that help?

$ firejail --debug-syscalls | grep 161   # syscall=161 in your output
161 - chroot

With syscalls.txt I get the following seccomp.drop line. (default seccomp filter without chroot)

ignore seccomp
seccomp.drop @clock,@cpu-emulation,@debug,@module,@obsolete,@raw-io,@reboot,@resources,@swap,acct,add_key,bpf,fanotify_init,io_cancel,io_destroy,io_getevents,ioprio_set,io_setup,io_submit,kcmp,keyctl,mincore,mount,name_to_handle_at,nfsservctl,ni_syscall,open_by_handle_at,pivot_root,remap_file_pages,request_key,setdomainname,sethostname,syslog,umount,umount2,userfaultfd,vhangup,vmsplice

Try adding this in riot-desktop.profile and uncomment seccomp in electron.profile.

Yes, adding those lines in riot-desktop.profile fixed the issue.