Closed clawoflight closed 7 years ago
This is much easier since I added 713c762 :)
can this be closed by https://github.com/clawoflight/aursec/commit/bbf247d3e2d4b6aaa34876a588f55a3cf237fd4e ?
I would say no, because there might be even more things to protect against. Now that the tests work, the fun part of pentesting can begin :D
Some more ideas:
We need to minimize the danger of sourcing the PKGBUILD. That means that we need to triple-check the firejail rules and actively try to break out until we are satisfied.