-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathusr.local.bin.gallery-dl
40 lines (29 loc) · 1.08 KB
/
usr.local.bin.gallery-dl
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
# vim:syntax=apparmor
#include <tunables/global>
# adjust in local
@{GLDL_DIRS} = @{HOME}/Downloads/gallery-dl @{HOME}/gallery-dl /tmp/gallery-dl
#include if exists <local/tunables/3rd/usr.local.bin.gallery-dl>
profile gallery_dl /usr/{,local/}bin/gallery-dl {
/usr/{,local/}bin/gallery-dl rix,
#include <abstractions/base>
#include <abstractions/openssl>
#include <abstractions/ssl_certs>
#include <abstractions/python>
#include <abstractions/3rd/nameservice-strict>
owner @{GLDL_DIRS}/{,**} rwk,
/etc/gallery-dl.conf r,
owner @{HOME}/.config/gallery-dl/config.json r,
owner @{HOME}/.gallery-dl.conf r,
owner @{HOME}/.cache/gallery-dl/{,**} rwk,
owner @{HOME}/.netrc r,
/usr/local/lib{,32,64}/python{2.[4-7],3.[0-9],3.[0-9][0-9]}/{site,dist}-packages/gallery_dl/{,**} r,
/usr/lib/python3/dist-packages/idna/__pycache__/{,**} rw,
deny /usr/local/bin/ r, # ??
# Ubuntu
network inet dgram,
network inet6 dgram,
network inet stream,
network inet6 stream,
network netlink raw,
#include if exists <local/usr.local.bin.gallery-dl>
}