To report a security issue, contact me via my website linickx.com or Mastodon @linickx@infosec.exchange
For transparency of the Docker Image contents, and SBOM is now attached to new releases.
HomeDetector implements a single AppArmor security profile (apparmor.txt) to restrict system access and provide defence-in-depth. The profile:
- Restricts file system access to application, configuration, and data directories (e.g.
/app/,/config/,/data/) - Denies key dangerous Linux capabilities (e.g.
sys_admin,dac_override) - Permits necessary network socket access (inet, unix) for application services
- Confines container processes under a unified
homedetectorprofile