-
Hello,
I come from an issue over at the Sysdig repository where I was advised to open up an issue here: https://github.com/draios/sysdig/issues/385#issuecomment-1510891984
The problem is that P…
-
I'm having a hard time seeing the reasoning for the policy recommendation to prevent writes to `/dev/shm/`.
This is the policy: https://github.com/kubearmor/policy-templates/blob/release/generic/sy…
-
Please, improve ninja to say WHAT subcommand failed ; simply exiting with
"ninja: build stopped: subcommand failed."
is useless - it doesn't tell people WHAT failed.
My log file, for a GCC build…
-
## Description of the problem
Sometimes people don't want to hard-code command-line arguments and environment variables via `loader.env_src_file` and `loader.argv_src_file`. What they want is to al…
-
First of all, thank you for developing this exciting project. I've been experimenting with bpftime for intercepting system calls, particularly in the context of non-privileged containers. However, I'v…
-
This doesn't work:
```
bpftrace -e 'kprobe:sys_execve { printf("%s\n", join(arg1)); }'
```
(See #25 for notes about kprobe:sys_execve going away.)
Is it possible to have join() be used as a…
-
### Describe the Bug
I must admit that this is a slightly esoteric use case and thus maybe some documentation at https://atmos.tools/cli/commands/vendor/pull#description would be sufficient.
Let…
-
### Description of the feature
It is possible that a non-main thread performs `execve()` to substitute the executing image in the same process. At this point, the non-main thread "assumes" the identi…
-
Running `strace -f -e execve make` allows us to see what external programs are used and how many times in the build process. If we want to ensure that only trusted/reproducible tools are used, then we…
-
At the moment, when invoking `chrpath` or `strip`, the tool seems to be using `popen`, which underneath just calls `system` with a command as a string.
~~~~
chrpath_cmd