1. 15 Dec, 2019 5 commits
  2. 08 Dec, 2019 1 commit
  3. 02 Dec, 2019 2 commits
  4. 01 Dec, 2019 1 commit
  5. 30 Nov, 2019 5 commits
  6. 27 Nov, 2019 1 commit
  7. 26 Nov, 2019 2 commits
  8. 25 Nov, 2019 1 commit
  9. 17 Oct, 2019 2 commits
  10. 13 Oct, 2019 1 commit
    • jvoisin's avatar
      Copy file permissions · 4034cf9a
      jvoisin authored
      Mat2 (the cli) will now copy the input file permissions
      to the output file.
      4034cf9a
  11. 12 Oct, 2019 7 commits
  12. 05 Oct, 2019 1 commit
    • madaidan's avatar
      Mount a new tmpfs on /tmp and drop all capabilities · 58773088
      madaidan authored
      This mounts a new tmpfs on /tmp so any files residing there would be hidden
      from the sandbox. Many programs store some files in there that might be useful
      to an attacker.  It also drops all capabilities incase it is ever run with
      extra capabilities for whatever reason.
      58773088
  13. 21 Sep, 2019 1 commit
    • jvoisin's avatar
      Fix bubblewrap · 37145531
      jvoisin authored
      On some machines (like mine), `/proc` has to be mounted.  Also, since
      sandboxing with bubblewrap is best effort and assumes that an attacker doesn't
      have control outside of the file to clean, it's safe to __try__ to enable some
      bubblewrap features, and to silently fail otherwise.
      37145531
  14. 01 Sep, 2019 5 commits
  15. 31 Aug, 2019 1 commit
  16. 01 Aug, 2019 1 commit
  17. 22 Jul, 2019 3 commits