-
Notifications
You must be signed in to change notification settings - Fork 17
Home
SELint is a program to perform static code analysis on SELinux policy source files. SELint seeks to help policy developers write policy that is more maintainable, readable and secure, and to reduce the time spent debugging challenging policy issues.
To use an SELint release, you can download and extract a release tarball from the releases page on github and then follow the instructions in the README.
SELint can check for a variety of common issues. See the README for a complete list of available checks as well as configuration options for which checks to run. By default, SELint will run all available checks. If you want examples of policy in violation of each check, look at check_examples.txt.
For more detailed explanation of each check, see the appropriate wiki page for that check.
See Guidelines in repo