felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2826 commits 5 branches 0 tags 16 MiB
Commit graph

1310 commits

Author SHA1 Message Date
REmerald
8f05f02356 fix(systemd-oomd): shorten paths 2024-06-06 11:38:21 +01:00
REmerald
281768667a fix(systemd-oomd): change to {,**/} 2024-06-06 11:38:21 +01:00
REmerald
6801ae1e0c fix(systemd-oomd): make org.a11y.atspi.Registry.slice as in apparmor.d/groups/gnome/epiphany-search-provider 2024-06-06 11:38:21 +01:00
REmerald
5a8510a1f7 fix(systemd-oomd): add cgroup/system.slice/ and app-dbus* paths 2024-06-06 11:38:21 +01:00
REmerald
37d0a36763 fix(polkit-gnome-authentication-agent): include dconf-write 2024-06-06 11:37:53 +01:00
Alexandre Pujol
8b60e56002
feat(profile): general update. 2024-06-04 20:13:40 +01:00
REmerald
f9442e8258 fix(systemd-oomd): add app.slice and session.slice paths 2024-06-03 17:52:34 +01:00
curiosityseeker
8dff2ddd72
polkit-kde-authentication-agent update (#345) 
* Update polkit-kde-authentication-agent

needs mediate_deleted

* Update main.flags

* Update polkit-kde-authentication-agent

* Update polkit-kde-authentication-agent
 2024-06-02 20:19:43 +00:00
valoq
bb772167f0
add multiple profiles (#341) 
* add multiple profiles
 2024-05-31 10:47:01 +00:00
Alexandre Pujol
45ae8f5d27
feat(abs): add pgrep. 2024-05-30 21:08:03 +01:00
Alexandre Pujol
3f688be7a0
feat(profile): general update. 2024-05-30 21:03:39 +01:00
Alexandre Pujol
89abbae6bd
Merge branch 'feat/aa' 
Improve go apparmor lib.

* aa: (62 commits)
  feat(aa): handle appending value to defined variables.
  chore(aa): cosmetic.
  fix: userspace prebuild test.
  chore: cleanup unit test.
  feat(aa): improve log conversion.
  feat(aa): move conversion function to its own file & add unit tests.
  fix: go linter issue & not defined variables.
  tests(aa): improve aa unit tests.
  tests(aa): improve rules unit tests.
  feat(aa): ensure the prebuild jobs are working.
  feat(aa): add more unit tests.
  chore(aa): cleanup.
  feat(aa): Move sort, merge and format methods to the rules interface.
  feat(aa): add the hat template.
  feat(aa): add the Kind struct to manage aa rules.
  feat(aa): cleanup rules methods.
  feat(aa): add function to resolve include preamble.
  feat(aa): updaqte mount flags order.
  feat(aa): update default tunable selection.
  feat(aa): parse apparmor preamble files.
  ...
 2024-05-30 19:29:34 +01:00
Alexandre Pujol
bc216176a3
fix: go linter issue & not defined variables. 2024-05-30 12:28:12 +01:00
Alexandre Pujol
c785b41451
feat(profile): general update. 2024-05-18 22:35:05 +01:00
Alexandre Pujol
5e6af16580
feat(profile): small improvment on systemd profiles. 2024-05-18 13:09:25 +01:00
fira959
d40812ec2f
Profile fixes (#334) 
* Update discord

fix path

* Update signal-desktop-chrome-sandbox

* Update signal-desktop
 2024-05-17 11:44:15 +00:00
doublez13
192d227c50 crontab: Use editor abstraction 2024-05-16 15:44:29 +01:00
doublez13
98ea2fa47b apt: Use editor abstraction 2024-05-16 15:44:29 +01:00
fira959
f86b305a66
Update discord profile (#332) 
---------

Co-authored-by: Alex <roddhjav@users.noreply.github.com>
 2024-05-16 10:33:24 +00:00
Alexandre Pujol
41b814675b
fix: syntax error. 2024-05-15 23:53:17 +01:00
Alexandre Pujol
58e458f4ab
feat(profile): add the app/firefox abstraction. 2024-05-15 23:13:23 +01:00
Alexandre Pujol
f5ac8cd4a1
feat(profile): improve dbus rule in chromium based profiles. 2024-05-15 23:07:05 +01:00
Alexandre Pujol
ad960d477b
feat(profile): replace former regex by the new @{user} variable. 2024-05-15 17:22:20 +01:00
Alexandre Pujol
407c71b133
feat(profile): modernize a few app profiles. 2024-05-15 14:50:50 +01:00
fira959
acd6a9794d
Update signal-desktop (#331) 
* Update signal-desktop

* Update signal-desktop-chrome-sandbox

* Update signal-desktop

* Update apparmor.d/groups/apps/signal-desktop

Co-authored-by: Alex <roddhjav@users.noreply.github.com>

* Update signal-desktop

---------

Co-authored-by: Alex <roddhjav@users.noreply.github.com>
 2024-05-14 21:54:31 +00:00
Alexandre Pujol
8f102dea0a
feat(profile): general update. 2024-05-13 20:35:11 +01:00
Alexandre Pujol
1739c07ca1
feat(profile): general update. 2024-05-11 17:38:43 +01:00
Alexandre Pujol
4d29127d57
feat(profile): rewrite the child-open* profiles. 2024-05-11 12:13:57 +01:00
Jose Maldonado aka Yukiteru
31cb3e962d Enable flameshot profile 
I tested in enforce mode the flameshot profile and
fix a little problem with access resources for this app.

All work OK in Debian Stable.
 2024-05-11 12:10:59 +01:00
Alexandre Pujol
bed9545082
feat(profile): general update. 2024-05-08 20:08:41 +01:00
Alexandre Pujol
538a73e21e
feat(profile): add user_unconfined profile & reorganise pam profiles. 2024-05-08 15:34:39 +01:00
Alexandre Pujol
fe1e3c3be8
feat(profile): add some new profile. 2024-05-07 17:25:43 +01:00
Alexandre Pujol
239d5efe63
feat(profile): general update. 2024-05-07 16:19:29 +01:00
Alexandre Pujol
4ada6f5879
feat(profile): improve dpkg deb & split. 2024-05-07 16:12:29 +01:00
Alexandre Pujol
18d1ee66a2
feat(profile): update zram generator. 2024-05-07 13:19:41 +01:00
Alexandre Pujol
03dd5fe4cd
feat(profile): improve xfce profiles stack. 2024-05-07 00:04:07 +01:00
Alexandre Pujol
c84b48b0b4
feat(profile): add torbrowser-updater. 2024-05-06 23:53:17 +01:00
Alexandre Pujol
eeb990a934
feat(profile): add some whonix specific profiles. 2024-05-06 23:52:38 +01:00
Alexandre Pujol
c5ed997b6d
feat(profile): improve whonix specific profiles. 2024-05-06 23:51:46 +01:00
Alexandre Pujol
301ffb6065
fix(profile): link rule format. 2024-05-06 20:53:29 +01:00
Alexandre Pujol
c2d786200f
feat(profile): cleanup xsession logs. 2024-05-06 20:47:08 +01:00
Alexandre Pujol
4b4e14b1d6
fix(profile): various fix & cleanup 2024-05-06 20:33:01 +01:00
Alex
f75e5047df
Merge branch 'main' into feat/update 2024-05-06 19:56:11 +01:00
Jose Maldonado
8224ac2b3f
Fix access to OpenSC configuration (#326) 2024-05-06 18:16:39 +00:00
Alexandre Pujol
89f896a0fd
feat(profile): cleanup flatpak share access. 2024-05-05 18:17:52 +01:00
Alexandre Pujol
0ffd70319b
feat(tunable): add @{hex16} 2024-05-05 17:49:45 +01:00
Fusion future
bfd9e9e3d6
plasmashell: add local wallpaper rules (#324) 
Allow plasmashell to access wallpapers in the cache folder and the user
share folder.
 2024-05-05 11:47:59 +00:00
Fusion future
06619cef0a
plasmashell: add flatpak mime folder (#325) 
It's read by the krunner plugin.
 2024-05-05 11:47:40 +00:00
Alexandre Pujol
d69dcad46d
feat(profile): add epiphany. 
Fix  #322
 2024-05-04 13:19:03 +01:00
Alexandre Pujol
f38f1ad651
feat(profile): improve kde profiles. 2024-05-04 00:21:03 +01:00