feat: add script to create security manifest#28
Conversation
cjdcordeiro
left a comment
There was a problem hiding this comment.
thanks for this :)
before looking at the code, could you please move the script into a dedicated folder? The chisel-wrapper ended up at the root level just because it was the first one and and the sole reason why we created this repo, but all the subsequent tools ended up having their own folder.
P.S. it would also be nice to have a PR description. This is useful for the future, if ever we need to come back to this PR and try to understand the context and motivation that led to this change.
|
From @cjdcordeiro:
This means we can use such manifest to create the |
Wrapper script uses the chisel wrapper to generate a security manifest based on dpkg status.
Usage:
security-manifest [OPTIONS] -- <slice names..>Example:
security-manifest --cleanup --rootfs myfs -- --release ubuntu-20.04 libc6_libs