mirror/infrastructure
1
1
Fork 0
mirror of https://gitlab.archlinux.org/archlinux/infrastructure.git synced 2025-01-18 08:06:16 +01:00
Code Issues
enable-gitlab-spamcheck
infrastructure/roles/prometheus_exporters/templates/prometheus-flyspray-textcollector.service.j2
Jelle van der Waa 0235da01bf
Collect flyspray open issues
2023-06-25 17:35:05 +02:00

35 lines
695 B
Django/Jinja
Raw Permalink Blame History

[Unit]
Description=Prometheus Flyspray Exporter
After=mysqld.service
[Service]
Type=oneshot
ExecStart=/usr/local/bin/flyspray-textcollector.py {{ prometheus_textfile_dir }}
NoNewPrivileges=true
LockPersonality=true
PrivateDevices=true
PrivateTmp=true
ProtectSystem=strict
ProtectHome=true
ReadWritePaths={{ prometheus_textfile_dir }}
MemoryDenyWriteExecute=true
RemoveIPC=true
RestrictRealtime=true
RestrictNamespaces=true
RestrictSUIDSGID=true
RestrictAddressFamilies=~AF_NETLINK
RestrictAddressFamilies=~AF_PACKET
ProtectHostname=true
ProtectControlGroups=true
ProtectKernelLogs=true
ProtectKernelTunables=true
ProtectKernelModules=true
ProtectClock=true
SystemCallArchitectures=native
View Git Blame Copy Permalink