monadical/greywall
Archived
13
0
Fork 0
Code Issues Pull Requests 1 Actions 2 Packages Projects Releases Wiki Activity
This repository has been archived on 2026-03-13. You can view files and clone it. You cannot open issues or pull requests or push a commit.
Files
c19370f8b387b760ebd8379e7b047faa07f9821f
greywall/CONTRIBUTING.md
Mathieu Virbel da3a2ac3a4 rename Fence to Greywall as GreyHaven sandboxing component 
Rebrand the project from Fence to Greywall, the sandboxing layer of the
GreyHaven platform. This updates:

- Go module path to gitea.app.monadical.io/monadical/greywall
- Binary name, CLI help text, and all usage examples
- Config paths (~/.config/greywall/greywall.json), env vars (GREYWALL_*)
- Log prefixes ([greywall:*]), temp file prefixes (greywall-*)
- All documentation, scripts, CI workflows, and example files
- README rewritten with GreyHaven branding and Fence attribution

Directory/file renames: cmd/fence → cmd/greywall, pkg/fence → pkg/greywall,
docs/why-fence.md → docs/why-greywall.md, example JSON files, and banner.
2026-02-10 16:00:24 -06:00

172 lines
3.5 KiB
Markdown
Raw Blame History

# Contributing
Thanks for helping improve `greywall`!
If you have any questions, feel free to open an issue.
## Quick start
- Requirements:
- Go 1.25+
- macOS or Linux
- Clone and prepare:
```bash
git clone https://gitea.app.monadical.io/monadical/greywall
cd greywall
make setup # Install deps and lint tools
make build # Build the binary
./greywall --help
```
## Dev workflow
Common targets:
| Command | Description |
|---------|-------------|
| `make build` | Build the binary (`./greywall`) |
| `make run` | Build and run |
| `make test` | Run tests |
| `make test-ci` | Run tests with coverage |
| `make deps` | Download/tidy modules |
| `make fmt` | Format code with gofumpt |
| `make lint` | Run golangci-lint |
| `make build-ci` | Build with version info (used in CI) |
| `make help` | Show all available targets |
## Code structure
See [ARCHITECTURE.md](ARCHITECTURE.md) for the full project structure and component details.
## Style and conventions
- Keep edits focused and covered by tests where possible.
- Update [ARCHITECTURE.md](ARCHITECTURE.md) when adding features or changing behavior.
- Prefer small, reviewable PRs with a clear rationale.
- Run `make fmt` and `make lint` before committing. This project uses `golangci-lint` v1.64.8.
## Testing
```bash
# Run all tests
make test
# Run with verbose output
go test -v ./...
# Run with coverage
make test-ci
```
### Testing on macOS
```bash
# Test blocked network request
./greywall curl https://example.com
# Test with allowed domain
echo '{"network":{"allowedDomains":["example.com"]}}' > /tmp/test.json
./greywall -s /tmp/test.json curl https://example.com
# Test monitor mode
./greywall -m -c "touch /etc/test"
```
### Testing on Linux
Requires `bubblewrap` and `socat`:
```bash
# Ubuntu/Debian
sudo apt install bubblewrap socat
# Test in Colima or VM
./greywall curl https://example.com
```
## Troubleshooting
**"command not found" after go install:**
- Add `$GOPATH/bin` to your PATH
- Or use `go env GOPATH` to find the path
**Module issues:**
```bash
go mod tidy # Clean up dependencies
```
**Build cache issues:**
```bash
go clean -cache
go clean -modcache
```
**macOS sandbox issues:**
- Check `log stream --predicate 'eventMessage ENDSWITH "_SBX"'` for violations
- Ensure you're not running as root
**Linux bwrap issues:**
- May need `sudo` or `kernel.unprivileged_userns_clone=1`
- Check that socat and bwrap are installed
## For Maintainers
### Releasing
Releases are automated using [GoReleaser](https://goreleaser.com/) via GitHub Actions.
#### Creating a release
Use the release script to create and push a new version tag:
```bash
# Patch release (v1.0.0 → v1.0.1)
./scripts/release.sh patch
# Minor release (v1.0.0 → v1.1.0)
./scripts/release.sh minor
```
The script runs preflight checks, calculates the next version, and prompts for confirmation before tagging.
Once the tag is pushed, GitHub Actions will automatically:
- Build binaries for all supported platforms
- Create archives with README, LICENSE, and ARCHITECTURE.md
- Generate checksums
- Create a GitHub release with changelog
- Upload all artifacts
#### Supported platforms
The release workflow builds for:
- **Linux**: amd64, arm64
- **macOS (darwin)**: amd64, arm64
#### Building locally for distribution
```bash
# Build for current platform
make build
# Cross-compile
make build-linux
make build-darwin
# With version info (mimics CI builds)
make build-ci
```
To test the GoReleaser configuration locally:
```bash
goreleaser release --snapshot --clean
```
Reference in New Issue View Git Blame Copy Permalink