From e536efadc710482f74b4663b2d5d7a222f215f45 Mon Sep 17 00:00:00 2001
From: spaceoden <26421479+spaceoden@users.noreply.github.com>
Date: Fri, 19 Jul 2024 10:32:45 -0800
Subject: [PATCH] Update 60-custom.just.readme.md to identify command inclusion
 (#320)

identify which kargs are applied by which ujust commands
---
 .../usr/share/ublue-os/just/60-custom.just.readme.md  | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/config/files/usr/share/ublue-os/just/60-custom.just.readme.md b/config/files/usr/share/ublue-os/just/60-custom.just.readme.md
index 3a5ffb7..1d1b97f 100644
--- a/config/files/usr/share/ublue-os/just/60-custom.just.readme.md
+++ b/config/files/usr/share/ublue-os/just/60-custom.just.readme.md
@@ -1,3 +1,4 @@
+## Included in set-kargs-hardening
 
 **Zero newly allocated pages and heaps, mitigating use-after-free vulnerabilities**
 
@@ -23,10 +24,6 @@
 
 `vsyscall=none` 
 
-**Disable debugfs to prevent exposure of sensitive kernel information**
-
-`debugfs=off` 
-
 **Enable kernel lockdown in the strictest mode**
 
 `lockdown=confidentiality` 
@@ -65,6 +62,12 @@
 
 `mitigations=auto,nosmt` 
 
+## Included in set-kargs-hardening-unstable
+
 **Fill IOMMU protection gap by setting the busmaster bit during early boot**
 
 `efi=disable_early_pci_dma`
+
+**Disable debugfs to prevent exposure of sensitive kernel information**
+
+`debugfs=off`