Docker image to manage SELinux policies.
Let's assume you have SELinux rules defined as .te
files in Git.
Now, when you spin up a new Fedora CoreOS VM, you want these policies
to be applied.
On Fedora CoreOS the SELinux tools are stripped down, there is no e.g. checkmodule
to compile .te
files to .pp
Policy Packages.
Some of the available handy tools:
- audit2allow
- audit2why
- checkmodule
docker run --rm -it -v $(pwd):/workspace:z -w /workspace opsgang/selinux [command]
Use it with confidence. Scanned with Acquasec Trivy and Anchore Grype before pushing it to Docker Hub.