fix: remove other container-selinux refs (#26)

RoyalOughtness · secureblue-bot · commit 1f16bed6162f · 2025-12-08T02:42:12.000Z
diff --git a/cil/userns_deny_unconfined_relabels.cil b/cil/userns_deny_unconfined_relabels.cil
@@ -3,7 +3,7 @@
 ;; SPDX-License-Identifier: Apache-2.0 OR MIT
 
 (typeattribute userns_privileged_file_type)
-(typeattributeset userns_privileged_file_type (colord_exec_t devicekit_power_exec_t docker_exec_t file_manager_exec_type flatpak_exec_t kubelet_exec_t systemsettings_exec_t trivalent_exec_t trivalent_script_exec_t))
+(typeattributeset userns_privileged_file_type (colord_exec_t devicekit_power_exec_t file_manager_exec_type flatpak_exec_t systemsettings_exec_t trivalent_exec_t trivalent_script_exec_t))
 
 (typeattribute userns_relabel_allowed)
 (typeattributeset userns_relabel_allowed (init_t initrc_t install_t kernel_t))
@@ -16,4 +16,4 @@
 (deny userns_relabel_restricted userns_privileged_file_type (dir (relabelfrom relabelto)))
 (deny userns_relabel_restricted userns_privileged_file_type (fifo_file (relabelfrom relabelto)))
 (deny userns_relabel_restricted userns_privileged_file_type (file (relabelfrom relabelto)))
-(deny userns_relabel_restricted userns_privileged_file_type (lnk_file (relabelfrom relabelto)))
+(deny userns_relabel_restricted userns_privileged_file_type (lnk_file (relabelfrom relabelto)))
