selint(1)

1SELINT(1)                        User Commands                       SELINT(1)
2
3
4

NAME

6       SELint  -  Perform static source code analysis on SELinux policy source
7       files
8

SYNOPSIS

10       selint [OPTIONS] FILE [...]
11

DESCRIPTION

13       Perform static code analysis on SELinux policy source.
14
15       -c, --config=CONFIGFILE
16              Override default config with config specified on  command  line.
17              See CONFIGURATION section for config file syntax.
18
19       --color=COLOR_OPTION
20              Configure  color  output.  Options are on, off and auto (the de‐
21              fault).
22
23       --context=CONTEXT_PATH
24              Recursively scan CONTEXT_PATH to find additional te and if files
25              to  parse,  but not scan.  SELint will assume the scanned policy
26              files are intended to be  compiled  together  with  the  context
27              files.   are  intended  to be compiled together with the context
28              files.  Implies -s.
29
30       --debug-parser
31              Enable debug output for the internal policy parser.  Very noisy,
32              useful to debug parsing failures.
33
34       -d, --disable=CHECKID
35              Disable check with the given ID.
36
37       -e, --enable=CHECKID
38              Enable check with the given ID.
39
40       -E, --only-enabled
41              Only  run  checks  that are explicitly enabled with the --enable
42              option.
43
44       --full-path
45              Print full path for files.
46
47       -F, --fail
48              Exit with a non-zero value if any issue was found.
49
50       -h, --help
51              Display this menu.
52
53       -l, --level=LEVEL
54              Only list errors with a severity level at or greater than LEVEL.
55              Options are C (convention), S (style), W (warning), E (error), F
56              (fatal error).
57
58       --scan-hidden-dirs
59              Scan hidden directories.  By default  hidden  directories  (like
60              '.git') are skipped in recursive mode.
61
62       -s, --source
63              Run  in "source mode" to scan a policy source repository that is
64              designed to compile into a full system policy.
65
66       -S, --summary
67              Display a summary of issues found after running the analysis.
68
69       --summary-only
70              Only display a summary of issues found after running the  analy‐
71              sis.  Do not show the individual findings.  Implies -S.
72
73       -r, --recursive
74              Scan recursively and check all SELinux policy files found.
75
76       -v, --verbose
77              Enable verbose output.
78
79       -V, --version
80              Show version information and exit.
81

REPORTING_BUGS

83       Report bugs at https://github.com/SELinuxProject/selint/issues
84

AUTHOR

86       Daniel Burgener <Daniel.Burgener@microsoft.com>
87
88
89
90SELint 1.4.0                     February 2023                       SELINT(1)