fortify

History

Ophestra 72b0160aad All checks were successful Test / Create distribution (push) Successful in 49s Details Test / Run NixOS test (push) Successful in 3m42s Details helper/bwrap: implement file copy flags These are significantly more efficient and less error-prone than mounting an external tmpfile. This should also reduce attack surface as the resulting files are private to its specific sandbox. Signed-off-by: Ophestra <cat@gensokyo.uk>		2025-02-15 03:13:15 +09:00
..
bwrap	helper/bwrap: implement file copy flags	2025-02-15 03:13:15 +09:00
proc	helper/proc: cancel ec on parent ctx	2025-02-13 23:08:28 +09:00
seccomp	helper: use generic extra files interface	2025-02-13 23:34:15 +09:00
args_test.go	migrate to git.gensokyo.uk/security/fortify	2024-12-20 00:20:02 +09:00
args.go	helper/args: MustNewCheckedArgs for cleaner hardcoded args	2024-10-07 13:33:18 +09:00
bwrap_test.go	helper: use generic extra files interface	2025-02-13 23:34:15 +09:00
bwrap.go	helper/bwrap: merge Args and FDArgs	2025-02-14 18:13:06 +09:00
direct_test.go	helper: use generic extra files interface	2025-02-13 23:34:15 +09:00
direct.go	helper: use generic extra files interface	2025-02-13 23:34:15 +09:00
helper_test.go	helper: use generic extra files interface	2025-02-13 23:34:15 +09:00
helper.go	helper: use generic extra files interface	2025-02-13 23:34:15 +09:00
stub_test.go	migrate to git.gensokyo.uk/security/fortify	2024-12-20 00:20:02 +09:00
stub.go	helper/bwrap: merge Args and FDArgs	2025-02-14 18:13:06 +09:00