ash / xcode-dev

Policy for software development with Xcode

Xcode Dev

Rules used for Xcode development.

Notes

  • fe80::/10 is a CIDR block for link-local addresses, called by xcodebuild
# yaml-language-server: $schema=https://hub.ashell.dev/schemas/policy/v1.json

schema_version: 1
publish:
  name: ash/xcode-dev
  version: 0.0.8
  description: Policy for software development with Xcode
  authors:
  - Ash Team <team@ashell.dev>
  license: MIT
dependencies:
  ash/base-macos: ^0
files:
  rules:
  - path: /Applications/Xcode.app
    operations:
    - read
  - path: /Library/Apple
    operations:
    - read
  - path: /Library/Apple/usr
    operations:
    - read
  - path: /Library/Apple/usr/bin
    operations:
    - read
  - path: /Library/Preferences/com.apple.dt.Xcode.plist
    operations:
    - read
  - path: /Library/Preferences/com.apple.security.plist
    operations:
    - read
  - path: /Library/Preferences/com.apple.security.systemidentities.plist
    operations:
    - read
  - path: /dev/ptmx
    operations:
    - write
  - path: /opt/X11
    operations:
    - read
  - path: /opt/X11/bin
    operations:
    - read
  - path: /private/tmp/**
  - path: /private/var
    operations:
    - read
  - path: /private/var/root/.CFUserTextEncoding
    operations:
    - read
  - path: /private/var/run
    operations:
    - read
  - path: /private/var/run/com.apple.security.cryptexd
    operations:
    - read
  - path: /private/var/run/com.apple.security.cryptexd/mnt
    operations:
    - read
  - path: /private/var/run/usbmuxd
    operations:
    - read
  - path: ~/.swiftpm/*
  - path: ~/Library/Audio
    operations:
    - read
  - path: ~/Library/Audio/Plug-Ins
    operations:
    - read
  - path: ~/Library/Caches/com.apple.dt.Xcode/**
  - path: ~/Library/Developer/**
  - path: ~/Library/HTTPStorages/com.apple.dt.xcodebuild/httpstorages.*
    operations:
    - write
  - path: ~/Library/MobileDevice/Provisioning Profiles
    operations:
    - read
  - path: ~/Library/MobileDevice/Provisioning Profiles/*
    operations:
    - read
  - path: ~/Library/org.swift.swiftpm/**
network:
  rules:
  - host: developer.apple.com
    ports:
    - 443
  - host: fe80::/10
    ports:
    - 62078
  - host: swift.org
    ports:
    - 443
exec:
  rules:
  - path: /Library/Developer/PrivateFrameworks/CoreSimulator.framework/**
  - path: /System/Library/Frameworks/CoreServices.framework/**
io_devices:
  rules:
  - class: AGXDeviceUserClient
  - class: AppleNVMeEANUC
  - class: AppleParavirtDeviceUserClient
  - class: IOSurfaceRootUserClient
0.0.829 days ago0.0.71 month ago0.0.61 month ago0.0.51 month ago0.0.41 month ago0.0.31 month ago0.0.21 month ago0.0.11 month ago
ash/base-macos