diff options
| author | Luca Boccassi <luca.boccassi@microsoft.com> | 2021-11-26 15:46:40 +0000 |
|---|---|---|
| committer | Luca Boccassi <luca.boccassi@microsoft.com> | 2021-11-26 18:17:26 +0000 |
| commit | 0446921131218c3f23f8937f85294b3c244a923b (patch) | |
| tree | a7906870474dbec7e2febaf518e948cee975b493 /shell-completion | |
| parent | 83de7427dc7897669cfd83b3af7d6bbb914a307c (diff) | |
| download | systemd-0446921131218c3f23f8937f85294b3c244a923b.tar.gz | |
analyze: add --profile switch to security verb
Allows to pass a portable profile when doing offline analysis of
units. Especially useful for analyzing portable images, since a
lot of the security-relevant settings in those cases come from
the profiles, but they are not shipped in the portable images.
Diffstat (limited to 'shell-completion')
| -rw-r--r-- | shell-completion/bash/systemd-analyze | 2 | ||||
| -rw-r--r-- | shell-completion/zsh/_systemd-analyze | 1 |
2 files changed, 2 insertions, 1 deletions
diff --git a/shell-completion/bash/systemd-analyze b/shell-completion/bash/systemd-analyze index 350dcabb94..ddee57b0e7 100644 --- a/shell-completion/bash/systemd-analyze +++ b/shell-completion/bash/systemd-analyze @@ -145,7 +145,7 @@ _systemd_analyze() { elif __contains_word "$verb" ${VERBS[SECURITY]}; then if [[ $cur = -* ]]; then - comps='--help --version --no-pager --system --user -H --host -M --machine --offline --threshold --security-policy --json=off --json=pretty --json=short --root --image' + comps='--help --version --no-pager --system --user -H --host -M --machine --offline --threshold --security-policy --json=off --json=pretty --json=short --root --image --profile=default --profile=nonetwork --profile=strict --profile=trusted' elif ! __contains_word "--offline" ${COMP_WORDS[*]}; then if __contains_word "--user" ${COMP_WORDS[*]}; then mode=--user diff --git a/shell-completion/zsh/_systemd-analyze b/shell-completion/zsh/_systemd-analyze index 468fd0e582..639964f064 100644 --- a/shell-completion/zsh/_systemd-analyze +++ b/shell-completion/zsh/_systemd-analyze @@ -87,6 +87,7 @@ _arguments \ '--threshold=[Set a value to compare the overall security exposure level with]: NUMBER' \ '--security-policy=[Allow user to use customized requirements to compare unit file(s) against]: PATH' \ '--json=[Generate a JSON output of the security analysis table]:MODE:(pretty short off)' \ + '--profile=[Include the specified profile in the security review of the unit(s)]: PATH' \ '--no-pager[Do not pipe output into a pager]' \ '--man=[Do (not) check for existence of man pages]:BOOL:(yes no)' \ '--generators=[Do (not) run unit generators]:BOOL:(yes no)' \ |