-
# Entitlements in Moby
This issue captures a draft design proposal for an entitlement mechanism that can be leveraged by Moby and other container management platforms to describe what additional pe…
-
### Environment
Include the result of the following commands:
- `nginx -V`: `nginx version: nginx/1.25.5`
- `uname -a`: `Linux nginx-ingress-nginx-controller-6ccd6bc45-g2t9g 6.11.0-1-default …
-
**Bug and expected behavior**
If I try to connect to a host via ssh for which proxyjump is configured in the `.ssh/config` file, my configured ssh-agent is not used and I get asked for a password eve…
-
# Required information
* Distribution: arch linux
* Distribution version: rolling
```shell
❯ lxc-start --version
5.0.3
❯ uname -a
Linux argon 6.5.6-arch2-1 #1 SMP PREEMPT_DYNAMIC Sat, 07 …
-
With the discussions about some of the limitations of (lib)seccomp (#2151, #2735 etc.), especially in the context of determining which error to return for syscalls that may or may not be around at run…
-
### Description
I use KeePassXC to open my KeePass database that is protected with a password, key file, and a challenge-response from my Yubikey. After the version 0.9.68 update, KeePassXC can n…
-
https://github.com/TresysTechnology/refpolicy-contrib
Upstream SELinux refpolicy
https://github.com/fedora-selinux/selinux-policy
Fedora's SELinux policy
Sandstorm would further demonstrate its commi…
-
**Bug and expected behavior**
- When trying to deploy a website with Capistrano (over SSH) to a firejailed user on a server, we get the following errors in 1 out of 2 deploys... meaning: it sometimes…
-
### Description
I'm unable to use nvim as man pager.
### Steps to Reproduce
```
MANPAGER='nvim +Man!' firejail /usr/bin/man sendfile
```
### Expected behavior
To show the man page.
…
-
### Description
Can't force telegram-desktop to share the screen in firejail.
### Steps to Reproduce
_Steps to reproduce the behavior_
1. Run telegram-desktop
2. Make a call
3. Try t…