The idea is to create a command like the following:
harpoon build --type=seccomp ...
This new feature should give the ability of creating a seccomp profile by combining together all the system calls collected with the command capture and/or hunt.
The sub-command name should be something like assemble, build,generate, or provide.
Additionally, I was thinking to add the flag -t/--type in case we want to support different types like systemd services (that make use of seccomp as well with the following label SystemCallFilter=.
The idea is to create a command like the following:
This new feature should give the ability of creating a seccomp profile by combining together all the system calls collected with the command
captureand/orhunt. The sub-command name should be something likeassemble,build,generate, orprovide. Additionally, I was thinking to add the flag-t/--typein case we want to support different types like systemd services (that make use of seccomp as well with the following labelSystemCallFilter=.