From ad5fda449720c5d446dabb7a704a7a170c6d727d Mon Sep 17 00:00:00 2001
From: Lockdis <45907176+Lockdis@users.noreply.github.com>
Date: Fri, 18 Jan 2019 14:10:10 +0100
Subject: Create google-earth-pro.profile

---
 etc/google-earth-pro.profile | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 etc/google-earth-pro.profile

diff --git a/etc/google-earth-pro.profile b/etc/google-earth-pro.profile
new file mode 100644
index 000000000..e0f341367
--- /dev/null
+++ b/etc/google-earth-pro.profile
@@ -0,0 +1,4 @@
+# Redirect
+include google-earth.profile
+
+private-bin google-earth-pro,sh,bash,grep,sed,ls,dirname
-- 
cgit v1.2.3-54-g00ecf


From a424c3709da65844e0ef2a91d7c0740c6787fd9a Mon Sep 17 00:00:00 2001
From: Lockdis <45907176+Lockdis@users.noreply.github.com>
Date: Fri, 18 Jan 2019 14:11:53 +0100
Subject: Update google-earth.profile

---
 etc/google-earth.profile | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/etc/google-earth.profile b/etc/google-earth.profile
index 6e5f99745..e075bfe9a 100644
--- a/etc/google-earth.profile
+++ b/etc/google-earth.profile
@@ -43,8 +43,10 @@ protocol unix,inet,inet6
 seccomp
 shell none
 
+disable-mnt
 private-bin google-earth,sh,bash,grep,sed,ls,dirname
 private-dev
+private-opt google
 
 noexec ${HOME}
 noexec /tmp
-- 
cgit v1.2.3-54-g00ecf


From c8c88229d81bd6945106f69d1d70a4cfb21a5bd1 Mon Sep 17 00:00:00 2001
From: Lockdis <45907176+Lockdis@users.noreply.github.com>
Date: Fri, 18 Jan 2019 14:50:16 +0100
Subject: Update google-earth-pro.profile

---
 etc/google-earth-pro.profile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/etc/google-earth-pro.profile b/etc/google-earth-pro.profile
index e0f341367..d62319fa2 100644
--- a/etc/google-earth-pro.profile
+++ b/etc/google-earth-pro.profile
@@ -1,4 +1,4 @@
 # Redirect
 include google-earth.profile
 
-private-bin google-earth-pro,sh,bash,grep,sed,ls,dirname
+private-bin google-earth-pro
-- 
cgit v1.2.3-54-g00ecf


From 900d58fc1731720c324a47695a75ca3862eebaa0 Mon Sep 17 00:00:00 2001
From: glitsj16 <glitsj16@users.noreply.github.com>
Date: Sun, 20 Jan 2019 02:21:56 +0000
Subject: Create clawsker.profile

---
 etc/clawsker.profile | 53 ++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 53 insertions(+)
 create mode 100644 etc/clawsker.profile

diff --git a/etc/clawsker.profile b/etc/clawsker.profile
new file mode 100644
index 000000000..e863a6a45
--- /dev/null
+++ b/etc/clawsker.profile
@@ -0,0 +1,53 @@
+# Firejail profile for clawsker
+# Description: An applet to edit Claws Mail's hidden preferences
+# This file is overwritten after every install/update
+# Persistent local customizations
+include clawsker.local
+# Persistent global definitions
+include globals.local
+
+noblacklist ${HOME}/.claws-mail
+whitelist ${HOME}/.claws-mail
+
+# Allow perl (blacklisted by disable-interpreters.inc)
+noblacklist ${PATH}/cpan*
+noblacklist ${PATH}/core_perl
+noblacklist ${PATH}/perl
+noblacklist /usr/lib/perl*
+noblacklist /usr/share/perl*
+
+include disable-common.inc
+include disable-devel.inc
+include disable-interpreters.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
+include whitelist-common.inc
+
+caps.drop all
+net none
+no3d
+nodbus
+nodvd
+nogroups
+nonewprivs
+noroot
+nosound
+notv
+nou2f
+novideo
+protocol unix
+seccomp
+shell none
+
+# disable-mnt
+# private
+private-bin clawsker,perl
+private-cache
+private-dev
+private-etc fonts
+private-lib girepository-1.*,libgirepository-1.*,perl*
+private-tmp
+
+# memory-deny-write-execute - breaks on Arch
+noexec ${HOME}
+noexec /tmp
-- 
cgit v1.2.3-54-g00ecf


From 375abfb0bc953ba95982d55ce2aa2b9f28cb71fd Mon Sep 17 00:00:00 2001
From: glitsj16 <glitsj16@users.noreply.github.com>
Date: Sun, 20 Jan 2019 02:23:57 +0000
Subject: Add clawsker to firecfg.config

---
 src/firecfg/firecfg.config | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/firecfg/firecfg.config b/src/firecfg/firecfg.config
index 0dd5f7ec5..ac94d16d6 100644
--- a/src/firecfg/firecfg.config
+++ b/src/firecfg/firecfg.config
@@ -86,6 +86,7 @@ clamdtop
 clamscan
 clamtk
 claws-mail
+clawsker
 clementine
 clipit
 cliqz
-- 
cgit v1.2.3-54-g00ecf


From cea10f844a58b0ae602a0876c8c577f421a7f11d Mon Sep 17 00:00:00 2001
From: glitsj16 <glitsj16@users.noreply.github.com>
Date: Sun, 20 Jan 2019 07:04:18 +0000
Subject: Harden eog profile

---
 etc/eog.profile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/etc/eog.profile b/etc/eog.profile
index 8cb64009c..75d343d4e 100644
--- a/etc/eog.profile
+++ b/etc/eog.profile
@@ -37,6 +37,7 @@ seccomp
 shell none
 
 private-bin eog
+private-cache
 private-dev
 private-etc fonts
 private-lib gdk-pixbuf-2.*,gio,girepository-1.*,gvfs,libgconf-2.so.*
-- 
cgit v1.2.3-54-g00ecf


From 5e5bffc4726ef39b64103456575fb1ed22ee934c Mon Sep 17 00:00:00 2001
From: glitsj16 <glitsj16@users.noreply.github.com>
Date: Sun, 20 Jan 2019 07:09:09 +0000
Subject: Harden gnome-calculator profile

---
 etc/gnome-calculator.profile | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/etc/gnome-calculator.profile b/etc/gnome-calculator.profile
index 7974211c7..999168e53 100644
--- a/etc/gnome-calculator.profile
+++ b/etc/gnome-calculator.profile
@@ -37,7 +37,9 @@ shell none
 
 disable-mnt
 private-bin gnome-calculator
+private-cache
 private-dev
+private-etc fonts
 private-lib gdk-pixbuf-2.*,gio,girepository-1.*,gvfs,libgconf-2.so.*,libgnutls.so.*,libproxy.so.*,librsvg-2.so.*,libxml2.so.*
 private-tmp
 
-- 
cgit v1.2.3-54-g00ecf


From c6d4dc73770342fbf110051535f1f7a30d2f22c0 Mon Sep 17 00:00:00 2001
From: glitsj16 <glitsj16@users.noreply.github.com>
Date: Sun, 20 Jan 2019 07:12:09 +0000
Subject: Create gcalccmd.profile

---
 etc/gcalccmd.profile | 13 +++++++++++++
 1 file changed, 13 insertions(+)
 create mode 100644 etc/gcalccmd.profile

diff --git a/etc/gcalccmd.profile b/etc/gcalccmd.profile
new file mode 100644
index 000000000..691d6b0c4
--- /dev/null
+++ b/etc/gcalccmd.profile
@@ -0,0 +1,13 @@
+# Firejail profile for gcalccmd
+# Description: GNOME console calculator
+# This file is overwritten after every install/update
+# Persistent local customizations
+include gcalccmd.local
+# Persistent global definitions
+# added by included profile
+#include globals.local
+
+private-bin gcalccmd
+
+# Redirect
+include gnome-calculator.profile
-- 
cgit v1.2.3-54-g00ecf


From 93ac558887a14babd228b20b193a55e0af905be7 Mon Sep 17 00:00:00 2001
From: glitsj16 <glitsj16@users.noreply.github.com>
Date: Sun, 20 Jan 2019 17:16:21 +0000
Subject: Unbreak currency conversion for gnome-calculator

---
 etc/gnome-calculator.profile | 1 -
 1 file changed, 1 deletion(-)

diff --git a/etc/gnome-calculator.profile b/etc/gnome-calculator.profile
index 999168e53..be4b0c03f 100644
--- a/etc/gnome-calculator.profile
+++ b/etc/gnome-calculator.profile
@@ -39,7 +39,6 @@ disable-mnt
 private-bin gnome-calculator
 private-cache
 private-dev
-private-etc fonts
 private-lib gdk-pixbuf-2.*,gio,girepository-1.*,gvfs,libgconf-2.so.*,libgnutls.so.*,libproxy.so.*,librsvg-2.so.*,libxml2.so.*
 private-tmp
 
-- 
cgit v1.2.3-54-g00ecf