The Kubernetes Security Profiles Operator
-
Updated
Jul 2, 2024 - C
The Kubernetes Security Profiles Operator
🔍 Trace syscalls from user-space functions, by using eBPF
🥷 seccomp-based anti-TTY-hijacking proof-of-concept (prevents TIOCSTI and TIOCLINUX)
Control plane for system processes
Painless Linux sandboxing API
Dynamic loading with privilege separation
DSL language to write seccomp filters
force-bind with seccomp-bpf notifications
stdout to collectd notification
pressure relief valve for Unix process pipelines
Add a description, image, and links to the seccomp topic page so that developers can more easily learn about it.
To associate your repository with the seccomp topic, visit your repo's landing page and select "manage topics."