eBPF Python runtime sandbox with seccomp (Blocks RCE).
Add warning for --with-dtrace support for python
Make trace.bt support any path to the python interpreter
Add info about "Could not resolve symbol" error on Ubuntu to FAQ.md
Added docker build and push to GH Actions
Blocking the following insecure syscalls by deafult in secimport build
:
INSECURE_SYSCALLS = [
"vfork",
"clone",
"access",
"chdir",
"creat",
"dup",
"dup2",
"execve",
"faccessat",
"fcntl",
"fdatasync",
"fork",
"fstat",
"fsync",
"getegid",
"geteuid",
"getgid",
"getgroups",
"getpid",
"getppid",
"getrlimit",
"getsockname",
"getsid",
"getuid",
"ioctl",
"link",
"lseek",
"lstat",
"mkdir",
"mknod",
"open",
"openat",
"pipe",
"poll",
"read",
"readlink",
"readv",
"recvfrom",
"recvmsg",
"rename",
"rmdir",
"select",
"sendmsg",
"sendto",
"setgid",
"setgroups",
"setpgid",
"setpriority",
"setregid",
"setreuid",
"setrlimit",
"setsid",
"setsockopt",
"stat",
"symlink",
"truncate",
"umask",
"utime",
"utimes",
"write",
"writev",
]