netblue30 · konstantin1722 · Apr 17, 2024 · Apr 23, 2024 · Apr 24, 2024 · Apr 25, 2024
diff --git a/etc/inc/disable-programs.inc b/etc/inc/disable-programs.inc
@@ -1254,3 +1254,4 @@ blacklist /var/games/slashem
 blacklist /var/games/vulturesclaw
 blacklist /var/games/vultureseye
 blacklist /var/lib/games/Maelstrom-Scores
+blacklist ${HOME}/.config/obsidian
diff --git a/etc/profile-m-z/obsidian.profile b/etc/profile-m-z/obsidian.profile
@@ -0,0 +1,42 @@
+# Firejail profile for obsidian-wayland
+# Description: Personal knowledge base and note-taking with Markdown files.
+# This file is overwritten after every install/update
+# Persistent local customizations
+include obsidian-wayland.local
+# Persistent global definitions
+include globals.local
+
+noblacklist ${HOME}/.cache/AMD
+noblacklist ${HOME}/.cache/mesa_shader_cache
+noblacklist ${HOME}/.cache/nvidia
+noblacklist ${HOME}/.local/share/applnk
+noblacklist ${HOME}/.local/share/vulkan
+noblacklist ${HOME}/.local/share/vulkan
+noblacklist ${HOME}/.config/kdedefaults
+noblacklist ${HOME}/.config/obsidian
+noblacklist ${HOME}/.config/vulkan
+
+whitelist ${HOME}/.cache/AMD
+whitelist ${HOME}/.cache/mesa_shader_cache
+whitelist ${HOME}/.cache/nvidia
+whitelist ${HOME}/.local/share/applnk
+whitelist ${HOME}/.local/share/vulkan
+whitelist ${HOME}/.local/share/vulkan
+whitelist ${HOME}/.config/kdedefaults
+whitelist ${HOME}/.config/obsidian
+whitelist ${HOME}/.config/vulkan
+
+ipc-namespace
+nonewprivs
+noroot
+protocol unix,inet,inet6
+#net none
-#net none
+#net none # networking is needed to download/update plugins
-#net none
+#net none # networking is needed to download/update plugins
+
+private-bin bash,basename,cat,cut,electron28,gawk,grep,obsidian,realpath,tr
+private-etc @network,@tls-ca,gnutls,nsswitch.conf,
+private-etc @x11,fonts,libva.conf
+
+read-only ${HOME}/.config/kdedefaults
+read-only ${HOME}/.config/vulkan
+
+include electron-common.profile