package restricted

You can search for identifiers within the package.

in-package search v0.2.0

Restrict possible system operations and filesystem view of your program

Install

dune-project

Dependency

codeberg.org Readme Changelog Edit opam file Versions (2)

Authors

R

Remove Wingman <ocaml@rw8.addy.io>

Maintainers

R

Remove Wingman <ocaml@rw8.addy.io>

Sources

ocaml-restricted-1.1.tar.gz

md5=8640c49d4b7e84deb1b60a105bdd338c

sha512=43243183b459398524415c6dd5583639c4a57612b17e0f295dfd878ae075445d3e3f3df1aad2841e0abf29a75a317dd8d6f1c1dd18469e47d01140aa51d41f50

doc/README.html

restricted

Restrict possible system operations and filesystem view of your program. Try to call it as soon as possible in your program. Actual restricted calls currently implemented for these operating systems:

OpenBSD

Even if your operating system is not currently actually implemented, you can still call restricted to make transparent to your users which privileges your program needs and your users can test these promises with tools like pledge on Linux. Enjoy ;)

Usage and Examples

opam install restricted

Contribute

Feel free to open issues and pull requests, especially tests are more than welcome.

Dependencies

for build and installation: OCaml, Dune
for development: OCaml, Dune, ppx_inline_test, ocamlformat, make, shellcheck, shfmt

inspired by

https://codeberg.org/semarie/ocaml-openbsd
https://www.openbsd.org/

Thanks.

LICENSE

This work is licensed only under the GNU Affero General Public License version 3 (AGPLv3). See the LICENSE file for details.