Current File : /var/lib/snapd/apparmor/profiles/snap.amazon-ssm-agent.amazon-ssm-agent

#include <tunables/global>

#include if exists "/etc/apparmor.d/tunables/home.d"

# This is a snap name without the instance key
@{SNAP_NAME}="amazon-ssm-agent"
# This is a snap name with instance key
@{SNAP_INSTANCE_NAME}="amazon-ssm-agent"
@{SNAP_INSTANCE_DESKTOP}="amazon-ssm-agent"
@{SNAP_COMMAND_NAME}="amazon-ssm-agent"
@{SNAP_REVISION}="11798"
@{PROFILE_DBUS}="snap_2eamazon_2dssm_2dagent_2eamazon_2dssm_2dagent"
@{INSTALL_DIR}="/{,var/lib/snapd/}snap"

profile "snap.amazon-ssm-agent.amazon-ssm-agent" flags=(attach_disconnected,mediate_deleted,complain) {
  # set file rules so that exec() inherits our profile unless there is
  # already a profile for it (eg, snap-confine)
  / rwkl,
  /** rwlkm,
  /** pix,

  capability,
  change_profile unsafe /**,
  dbus,
  network,
  mount,
  remount,
  umount,
  pivot_root,
  ptrace,
  signal,
  unix,


}