Adds custom git profile

diff --git a/config.dot/firejail/git.profile.link b/config.dot/firejail/git.profile.link
new file mode 100644 (file)
index 0000000..1521c6b
--- /dev/null
+++ b/config.dot/firejail/git.profile.link
@@ -0,0 +1,33 @@
+# git profile
+quiet
+noblacklist ~/.gitconfig
+noblacklist ~/.ssh
+noblacklist ~/.gnupg
+noblacklist ~/.emacs
+noblacklist ~/.emacs.d
+noblacklist ~/.viminfo
+noblacklist ~/.vim
+
+# custom
+noblacklist ~/.custom/gitconfig
+noblacklist ${PATH}/nc
+noblacklist /tmp/ssh-*
+
+include /etc/firejail/disable-common.inc
+include /etc/firejail/disable-programs.inc
+include /etc/firejail/disable-passwdmgr.inc
+
+# allow git to work with dotfiles
+read-write ${HOME}/.dotfiles
+
+caps.drop all
+netfilter
+nonewprivs
+noroot
+nogroups
+nosound
+protocol unix,inet,inet6
+seccomp
+shell none
+
+private-dev