monadical/greywall
Archived
13
0
Fork 0
Code Issues Pull Requests 1 Actions 2 Packages Projects Releases Wiki Activity
This repository has been archived on 2026-03-13. You can view files and clone it. You cannot open issues or pull requests or push a commit.
Files
37b154bc94db057c7553e5b16ba7a0d353132795
greywall/internal
History
JY Tan 37b154bc94 fix(linux): remove expensive glob expansion for mandatory deny patterns 
The glob expansion using **/pattern patterns caused full filesystem walks
of the current directory for each pattern (~15 patterns = ~15 walks).
This caused hangs in directories with many files (e.g., node_modules).

The concrete paths from getMandatoryDenyPaths() are sufficient for bwrap's
--ro-bind protections. Landlock (applied via wrapper) provides additional
recursive protection.

Fixes #27
2026-02-02 10:22:13 -08:00
..
config
feat: use OS-preferred config directory (#26)
2026-02-01 16:17:33 -08:00
importer
feat: ability to import claude code settings as configs (#7)
2026-01-15 14:55:44 -08:00
platform
Initial commit
2025-12-18 13:14:41 -08:00
proxy
Introduce built-in templates for enhanced configuration options, support JSONC format
2025-12-28 22:16:50 -08:00
sandbox
fix(linux): remove expensive glob expansion for mandatory deny patterns
2026-02-02 10:22:13 -08:00
templates
feat: add defaultDenyRead mode for strict filesystem isolation (#24)
2026-02-01 15:11:40 -08:00