saschagrunert/seccomp.json

## seccomp.json
{
  "defaultAction": "SCMP_ACT_ERRNO",
  "architectures": ["SCMP_ARCH_X86_64", "SCMP_ARCH_X86", "SCMP_ARCH_X32"],
  "syscalls": [
    {
      "names": [
        "accept4",
        "access",
        "arch_prctl",
        "bind",
        "brk",
        "capget",
        "capset",
        "chdir",
        "chown",
        "clone",
        "close",
        "connect",
        "dup2",
        "epoll_create",
        "epoll_ctl",
        "epoll_pwait",
        "epoll_wait",
        "eventfd2",
        "execve",
        "exit",
        "exit_group",
        "faccessat",
        "fadvise64",
        "fchdir",
        "fchown",
        "fcntl",
        "fgetxattr",
        "fsetxattr",
        "fstat",
        "fstatfs",
        "futex",
        "getcwd",
        "getdents",
        "getdents64",
        "getegid",
        "geteuid",
        "getgid",
        "getpid",
        "getppid",
        "getrlimit",
        "getuid",
        "io_setup",
        "ioctl",
        "listen",
        "lseek",
        "mkdir",
        "mmap",
        "mprotect",
        "munmap",
        "nanosleep",
        "newfstatat",
        "open",
        "openat",
        "pipe",
        "prctl",
        "pread64",
        "prlimit64",
        "pwrite64",
        "read",
        "recvfrom",
        "recvmsg",
        "rename",
        "rt_sigaction",
        "rt_sigprocmask",
        "rt_sigreturn",
        "rt_sigsuspend",
        "sched_getaffinity",
        "seccomp",
        "select",
        "sendfile",
        "sendmsg",
        "set_robust_list",
        "set_tid_address",
        "setgid",
        "setgroups",
        "setitimer",
        "setresgid",
        "setresuid",
        "setsockopt",
        "setuid",
        "sigaltstack",
        "socket",
        "socketpair",
        "stat",
        "statfs",
        "sysinfo",
        "umask",
        "uname",
        "unlink",
        "utimensat",
        "wait4",
        "write",
        "writev"
      ],
      "action": "SCMP_ACT_ALLOW"
    }
  ]
}
	{
	"defaultAction": "SCMP_ACT_ERRNO",
	"architectures": ["SCMP_ARCH_X86_64", "SCMP_ARCH_X86", "SCMP_ARCH_X32"],
	"syscalls": [
	{
	"names": [
	"accept4",
	"access",
	"arch_prctl",
	"bind",
	"brk",
	"capget",
	"capset",
	"chdir",
	"chown",
	"clone",
	"close",
	"connect",
	"dup2",
	"epoll_create",
	"epoll_ctl",
	"epoll_pwait",
	"epoll_wait",
	"eventfd2",
	"execve",
	"exit",
	"exit_group",
	"faccessat",
	"fadvise64",
	"fchdir",
	"fchown",
	"fcntl",
	"fgetxattr",
	"fsetxattr",
	"fstat",
	"fstatfs",
	"futex",
	"getcwd",
	"getdents",
	"getdents64",
	"getegid",
	"geteuid",
	"getgid",
	"getpid",
	"getppid",
	"getrlimit",
	"getuid",
	"io_setup",
	"ioctl",
	"listen",
	"lseek",
	"mkdir",
	"mmap",
	"mprotect",
	"munmap",
	"nanosleep",
	"newfstatat",
	"open",
	"openat",
	"pipe",
	"prctl",
	"pread64",
	"prlimit64",
	"pwrite64",
	"read",
	"recvfrom",
	"recvmsg",
	"rename",
	"rt_sigaction",
	"rt_sigprocmask",
	"rt_sigreturn",
	"rt_sigsuspend",
	"sched_getaffinity",
	"seccomp",
	"select",
	"sendfile",
	"sendmsg",
	"set_robust_list",
	"set_tid_address",
	"setgid",
	"setgroups",
	"setitimer",
	"setresgid",
	"setresuid",
	"setsockopt",
	"setuid",
	"sigaltstack",
	"socket",
	"socketpair",
	"stat",
	"statfs",
	"sysinfo",
	"umask",
	"uname",
	"unlink",
	"utimensat",
	"wait4",
	"write",
	"writev"
	],
	"action": "SCMP_ACT_ALLOW"
	}
	]
	}