Skip to content

Commit

Permalink
Update securitypolicy tool docs
Browse files Browse the repository at this point in the history 
Signed-off-by: Maksim An <maksiman@microsoft.com>
  • Loading branch information
@anmaxvl
anmaxvl committed Mar 21, 2022
1 parent 05b8dc2 commit bb409bb
Showing 1 changed file with 48 additions and 3 deletions.
51 changes: 48 additions & 3 deletions internal/tools/securitypolicy/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,16 @@ working_dir = "/home/user"
[[container.env_rule]]
strategy = "re2"
rule = "PREFIX_.+=.+"

[[container.mount]]
host_path = "sandbox://host/path/one"
container_path = "/container/path/one"
readonly = false

[[container.mount]]
host_path = "sandbox://host/path/two"
container_path = "/container/path/two"
readonly = true
```

### Converted to JSON
Expand Down Expand Up @@ -86,7 +96,38 @@ represented in JSON.
"5": "1b80f120dbd88e4355d6241b519c3e25290215c469516b49dece9cf07175a766"
}
},
"working_dir": "/home/user"
"working_dir": "/home/user",
"mounts": {
"length": 2,
"elements": {
"0": {
"source": "sandbox://host/path/one",
"destination": "/container/path/one",
"type": "bind",
"options": {
"length": 3,
"elements": {
"0": "rbind",
"1": "rprivate",
"2": "rw"
}
}
},
"1": {
"source": "sandbox://host/path/two",
"destination": "/container/path/two",
"type": "bind",
"options": {
"length": 3,
"elements": {
"0": "rbind",
"1": "rprivate",
"2": "ro"
}
}
}
}
}
},
"1": {
"command": {
Expand Down Expand Up @@ -114,7 +155,11 @@ represented in JSON.
"0": "16b514057a06ad665f92c02863aca074fd5976c755d26bff16365299169e8415"
}
},
"working_dir": "/"
"working_dir": "/",
"mounts": {
"length": 0,
"elements": {}
}
}
}
}
Expand All @@ -138,7 +183,7 @@ authorization information for a given image, you would add an `[auth]` object
to the TOML definiton for that image. For example:

```toml
[[image]]
[[container]]
image_name = "rust:1.52.1"
command = ["rustc", "--help"]

Expand Down

0 comments on commit bb409bb

Please sign in to comment.