security/fortify
2
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 35 Wiki Activity
2a4e2724a3
fortify/sandbox
History
Ophestra d613257841
All checks were successful
Test / Create distribution (push) Successful in 28s
Details
Test / Fpkg (push) Successful in 3m52s
Details
Test / Data race detector (push) Successful in 4m47s
Details
Test / Fortify (push) Successful in 2m4s
Details
Test / Flake checks (push) Successful in 57s
Details
sandbox/init: clear inheritable set 
Inheritable should not be able to affect anything regardless of its value, due to no_new_privs.

Signed-off-by: Ophestra <cat@gensokyo.uk>
2025-03-26 07:46:13 +09:00
..
seccomp app: run in native sandbox 2025-03-25 01:52:49 +09:00
vfs sandbox/vfs: add doc comments 2025-03-24 13:21:55 +09:00
wl sandbox/wl: move into sandbox 2025-03-25 05:26:37 +09:00
container_test.go sandbox: resolve tty name 2025-03-24 16:03:07 +09:00
container.go sandbox/init: drop capabilities 2025-03-26 06:32:08 +09:00
executable_test.go sandbox: move out of internal 2025-03-17 02:55:36 +09:00
executable.go sandbox: move out of internal 2025-03-17 02:55:36 +09:00
init.go sandbox/init: clear inheritable set 2025-03-26 07:46:13 +09:00
mount.go sandbox: wrap error with its own text message 2025-03-25 19:42:20 +09:00
msg.go sandbox: move out of internal 2025-03-17 02:55:36 +09:00
output.go sandbox: wrap error with its own text message 2025-03-25 19:42:20 +09:00
params.go sandbox: move out of internal 2025-03-17 02:55:36 +09:00
path.go sandbox: wrap error with its own text message 2025-03-25 19:42:20 +09:00
sequential.go sandbox: copy symlink with magic prefix 2025-03-26 01:42:39 +09:00
syscall.go sandbox: wrap capset syscall 2025-03-26 07:44:07 +09:00
sysctl.go sandbox: cache kernel.cap_last_cap value 2025-03-26 06:19:19 +09:00