diff options
author | rusty-snake <41237666+rusty-snake@users.noreply.github.com> | 2021-09-08 23:21:07 +0200 |
---|---|---|
committer | rusty-snake <41237666+rusty-snake@users.noreply.github.com> | 2021-09-08 23:21:07 +0200 |
commit | d452e45a9196aa2f4d34706fcfb7907707a19ff9 (patch) | |
tree | 1bc43ac88064e688a32e580a8e4512837f685733 /etc/profile-a-l/bundle.profile | |
parent | Fix #4509 -- Nextcloud profile broken - needs 3D and system tray access (diff) | |
download | firejail-d452e45a9196aa2f4d34706fcfb7907707a19ff9.tar.gz firejail-d452e45a9196aa2f4d34706fcfb7907707a19ff9.tar.zst firejail-d452e45a9196aa2f4d34706fcfb7907707a19ff9.zip |
Add profiles for build-systems (/package-managers)
Profiles: bunler, cargo (refactor), cmake (untested), make, meson, pip
All redirect to build-systems-common.profile
Other fixes:
- blacklist ${HOME}/.bundle
- blacklist ${HOME}/.cargo/* -> blacklist ${HOME}/.cargo
- blacklist /usr/lib64/ruby
Diffstat (limited to 'etc/profile-a-l/bundle.profile')
-rw-r--r-- | etc/profile-a-l/bundle.profile | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/etc/profile-a-l/bundle.profile b/etc/profile-a-l/bundle.profile new file mode 100644 index 000000000..269bfd130 --- /dev/null +++ b/etc/profile-a-l/bundle.profile | |||
@@ -0,0 +1,24 @@ | |||
1 | # Firejail profile for bundle | ||
2 | # Description: Ruby Dependency Management | ||
3 | # This file is overwritten after every install/update | ||
4 | quiet | ||
5 | # Persistent local customizations | ||
6 | include bundle.local | ||
7 | # Persistent global definitions | ||
8 | include globals.local | ||
9 | |||
10 | noblacklist ${HOME}/.bundle | ||
11 | |||
12 | # Allow ruby (blacklisted by disable-interpreters.inc) | ||
13 | include allow-ruby.inc | ||
14 | |||
15 | mkdir ${HOME}/.bundle | ||
16 | whitelist ${HOME}/.bundle | ||
17 | whitelist /usr/share/gems | ||
18 | whitelist /usr/share/ruby | ||
19 | whitelist /usr/share/rubygems | ||
20 | |||
21 | private-bin bundle,bundler,ruby,ruby-mri | ||
22 | |||
23 | # Redirect | ||
24 | include build-systems-common.profile | ||