Skip to content

Instantly share code, notes, and snippets.

View cedws's full-sized avatar

Connor Edwards cedws

64 followers · 31 following
View GitHub Profile
@cedws
cedws / sandbox-profiles.md
Created June 10, 2025 16:02
macOS Sandbox Profiles: A Practical Guide for Security (generated by LLM)

macOS Sandbox Profiles: A Practical Guide for Security

This tutorial provides a practical overview of macOS sandbox profiles (.sb files) used with sandbox-exec. It focuses on understanding the structure, common elements, and how to craft them for specific use cases.

What is Sandbox-Exec?

sandbox-exec is a command-line utility on macOS that allows you to execute a program within a restricted environment, defined by a sandbox profile. This profile specifies what resources the program can access, enhancing security by limiting the potential damage from vulnerabilities.

Why Use Sandbox Profiles?

@cedws
cedws / Dockerfile
Last active February 25, 2024 23:25
FROM golang:latest
WORKDIR /build
COPY . .
ARG GITHUB_HOST_KEY_ED25519="AAAAC3NzaC1lZDI1NTE5AAAAIOMqqnkVzrm0SdG6UOoqKLsabgH5C9okWi0dh2l9GKJl"
ARG CI
ARG GIT_CONFIG_COUNT=${CI:+0}
@cedws
cedws / mtproto.md
Created March 2, 2022 21:49
@cedws
cedws / defer.sh
Last active July 5, 2024 13:31
Go-like defer 'keyword' for shell
#!/bin/sh
DEFER=
defer() {
DEFER="$*; ${DEFER}"
trap "{ $DEFER }" EXIT
}
@cedws
cedws / sway_dockerfile_fedora29
Last active March 2, 2019 12:02
Might be outdated. Check https://github.com/swaywm/sway/wiki/Development-Setup.
# This Dockerfile is not pure and should not be used as anything other than a reference.
# You can build an image by running `docker build -t sway -f fedora29 .`
FROM fedora:29
# Install build dependencies.
RUN dnf install -y git gcc meson ninja-build
# Install dependencies.
RUN dnf install -y wayland-devel wayland-protocols-devel mesa-libEGL-devel mesa-libGLES-devel libdrm-devel libgbm-devel libxkbcommon-devel libudev-devel pixman-devel libinput-devel libevdev-devel systemd-devel cairo-devel libpcap-devel json-c-devel pam-devel pango-devel pcre-devel gdk-pixbuf2-devel
@cedws
cedws / fast-dims.py
Last active October 11, 2018 18:46
Get the dimensions of a remote image... fast.
import asyncio
import aiohttp
# I'm importing Pillow-SIMD for increased performance, but you can use ordinary Pillow if you wish.
from PIL import ImageFile
# The remote image we'll be finding the dimensions for.
SOURCE = "http://rustacean.net/assets/rustacean-orig-noshadow.png"
@cedws
cedws / brainfuck.rs
Last active July 15, 2018 16:38
const PROGRAM: &str = "++++++++[>++++[>++>+++>+++>+<<<<-]>+>+>->>+[<]<-]>>.>---.+++++++..+++.>>.<-.<.+++.------.--------.>>+.>++.";
const MAX_SCOPES: usize = 16;
const ALLOC_BLOCK_SIZE: usize = 128;
#[derive(Copy, Clone)]
enum Instruction {
PointerLeft,
PointerRight,
Increment,
Decrement,