scottk/secureblue
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/secureblue.git synced 2025-11-02 03:18:00 +00:00
Code Issues Packages Projects Releases Wiki Activity
976 Commits 1 Branch 0 Tags
c8e1630d95b827fdf1eb14d31d1f4bf4bd619854
Commit Graph

976 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
fine2006
c8e1630d95 fix: minor spelling mistake (#396) 2024-08-25 23:20:40 -07:00
graphenelover
05392582f4 docs: further clarify why mv2 won't be enabled (#395) 
* futher clarify why mv2 won't be enabled

* add link explaining mv3 superior security over mv2

* add space
 2024-08-25 13:10:41 -07:00
qoijjj
967c7551ad feat: sgid reduction (#392) 
* feat: also remove sgid bit

* Update yafti.yml

* Update yafti.yml
 2024-08-23 14:13:22 -07:00
qoijjj
c526c770ba feat: additional setuid reduction and removal of unused packages (#388) 
* feat: additional setuid reduction and removal of unused packages

* leave packages but keep suid removal
 2024-08-23 00:00:54 -07:00
qoijjj
c711b3c398 feat: include brew autoupdate services 2024-08-22 22:38:00 -07:00
qoijjj
1b5e539ec2 fix: audit script cleanup 2024-08-22 12:03:22 -07:00
Rubiginosa
51ad84b1ad feat: Add flatpak auditing to audit-secureblue (#377) 
* increase spacing on print_status

* Merged audit-flatpak into audit-secureblue

* print flatpak remote success

---------

Co-authored-by: qoijjj <129108030+qoijjj@users.noreply.github.com>
 2024-08-21 13:22:11 -07:00
qoijjj
aaf3e4d344 fix: set Recommends=false while waiting for upstream 2024-08-21 13:12:51 -07:00
Ivo Damjanović
826994592a feat: squash the layered images (#386) 
feat: squash reduces the number of custom layers to 1.
 2024-08-21 13:11:44 -07:00
Ivo Damjanović
0e3912c3b6 fix: remove -base from the naming scheme of the cosmic images (#385) 2024-08-21 12:12:56 -07:00
qoijjj
92eb7a46a3 fix: ensure usbguard is universally present 2024-08-20 18:47:24 -07:00
qoijjj
7ff130f248 fix: typo in audit script 2024-08-20 18:43:21 -07:00
qoijjj
96a06bf712 docs: add additional detail to POSTINSTALL-README.md 2024-08-20 16:11:07 -07:00
qoijjj
1c38cc7ce7 fix: use alternate delimiter for motd tip 2024-08-20 16:00:04 -07:00
qoijjj
38cbf7715a feat: add audit-secureblue just command (#382) 2024-08-20 15:08:18 -07:00
qoijjj
8c9d2e341c chore: remove patch merged upstream 2024-08-20 11:33:20 -07:00
qoijjj
3b2b1dbd93 fix: url in motd 2024-08-20 10:36:00 -07:00
qoijjj
d6e18573ae feat: add link to release notifications FAQ in motd 2024-08-20 10:34:51 -07:00
qoijjj
ab62176792 docs: fix typo 2024-08-20 10:33:53 -07:00
qoijjj
65de464f45 docs: link to release notifications in postinstall readme 2024-08-20 10:33:31 -07:00
qoijjj
de7bcc1f68 docs: add FAQ item about secureblue changes 2024-08-20 10:32:57 -07:00
qoijjj
327eb2279d docs: add a note to motd to check the latest release notes 2024-08-20 10:28:53 -07:00
qoijjj
f86b2c49e1 docs: add FAQ item about known upstream proprietary nvidia driver bug 2024-08-20 09:48:35 -07:00
qoijjj
06c2883bb1 fix: improve usbguard just command 2024-08-19 18:21:50 -07:00
qoijjj
0415516b2e docs: clarify POSTINSTALL-README.md 2024-08-19 17:22:57 -07:00
qoijjj
6d8a1bfeb1 docs: add step to POSTINSTALL-README.md 2024-08-19 17:20:18 -07:00
qoijjj
469e3fe7eb docs: add more postinstall steps 2024-08-19 17:06:51 -07:00
qoijjj
9d929fb087 chore: adjust patch in response to upstream changes 2024-08-19 15:20:41 -07:00
qoijjj
b51dfb9049 chore: set patchfiles detectable in .gitattributes 2024-08-19 09:51:49 -07:00
qoijjj
80fda3adc6 chore: remove unused file 2024-08-19 09:47:21 -07:00
qoijjj
dd10a99f93 fix: cleanup motd variables 2024-08-18 22:44:35 -07:00
qoijjj
5d4d755b96 chore: remove unusable toggle-nvk just command 2024-08-18 22:04:23 -07:00
qoijjj
49b8ad6efb fix: parse epoch time directly from json for motd 2024-08-18 21:41:21 -07:00
qoijjj
0d3869bbb5 fix: use json format for rpm-ostree in motd 2024-08-18 21:35:05 -07:00
qoijjj
7c5a225b7c docs: include missing item in readme 2024-08-18 21:24:54 -07:00
qoijjj
2d7b5a3ab2 fix: move justfile hardening to gui scripts 2024-08-18 21:23:47 -07:00
qoijjj
4c04c11b90 fix: typo in justfile script 2024-08-18 20:21:41 -07:00
qoijjj
357ce2934e feat: add tpm2 unlock improvements 2024-08-18 20:00:33 -07:00
qoijjj
3b4e75781a fix: build fix by including necessary package 2024-08-18 19:07:19 -07:00
qoijjj
01cf3e66a6 fix: disable maximize_build_space to ensure build deps are available 2024-08-18 18:59:20 -07:00
qoijjj
78198f4e5a feat: patch brew installation just command to not require wheel 2024-08-18 18:35:56 -07:00
qoijjj
a832247d84 docs: readme clarification 2024-08-14 22:01:28 -07:00
qoijjj
a6256a396c docs: fix links in readme 2024-08-13 11:08:14 -07:00
qoijjj
31b1339fa5 chore: disable yafti run on config change as it causes user confusion 2024-08-11 04:49:00 -07:00
Ivo Damjanović
94eca70c71 fix: container policy hardening script for cosmic images (#367) 2024-08-10 20:54:31 -07:00
qoijjj
e27586f10f docs: fix readme typo 2024-08-10 18:35:05 -07:00
qoijjj
d1e8c3c041 docs: reorganize images 2024-08-10 10:55:30 -07:00
qoijjj
3b927dc8ed fix: check only the first string token when searching lsattr 2024-08-10 03:56:35 -07:00
qoijjj
872cb784ef feat: add ujust command to lock bash environment files to mitigate LD… (#365) 2024-08-09 16:14:44 -07:00
qoijjj
3e9bfa81a9 fix: remove chsh removal script since it has been removed upstream 2024-08-08 17:45:03 -07:00