Admins will be upgrading ORNL GitLab Servers on Saturday, 16 May 2026, from 7 AM until 11 AM EST. Repositories will experience intermittent outages during this time.

Unverified Commit fdf74752 authored Mar 16, 2026 by Paul Haerle Committed by GitHub Mar 16, 2026

nixos/jenkins: Set ProtectSystem to strict (#472066)

parents a499dfba 81e2494e

nixos/modules/services/continuous-integration/jenkins/default.nix

+4 −1

Original line number	Diff line number	Diff line
		@@ -275,7 +275,10 @@ in
		ProtectKernelModules = true;
		ProtectKernelTunables = true;
		ProtectProc = "invisible";
		ProtectSystem = "full";
		ProtectSystem = "strict";
		ReadWritePaths = [
		cfg.home
		];
		RemoveIPC = true;
		RestrictAddressFamilies = [
		"AF_UNIX"

Admin message