|
24 | 24 | test: find\s.*-delete |
25 | 25 | description: "Did you -delete flag in the wrong order? find -delete going to delete all the file under your current path." |
26 | 26 | id: fs:delete_find_files |
| 27 | +- from: fs |
| 28 | + test: 'dd\s+.*of=/dev/([hs]d[a-z]|mmcblk[0-9])' |
| 29 | + description: "Are you sure you want to write directly to a block device? This could overwrite your disk." |
| 30 | + id: fs:dd_block_device |
| 31 | +- from: fs |
| 32 | + test: 'mkfs(?:\.(?:ext[2-4]|fat|ntfs|xfs|btrfs))?\s+(?:-t\s+\w+\s+)?/dev/([hs]d[a-z][0-9]*|mmcblk[0-9]p?[0-9]*)' |
| 33 | + description: "Are you sure you want to format this device? This will erase all data on it." |
| 34 | + id: fs:mkfs_format |
| 35 | +- from: fs |
| 36 | + test: 'parted\s+.*(/dev/([hs]d[a-z]|mmcblk[0-9]))' |
| 37 | + description: "Are you sure you want to modify disk partitions? This could erase all data on the disk." |
| 38 | + id: fs:parted_disk_modify |
| 39 | +- from: fs |
| 40 | + test: 'fdisk\s+.*(/dev/([hs]d[a-z]|mmcblk[0-9]))' |
| 41 | + description: "Are you sure you want to modify disk partitions? This could erase all data on the disk." |
| 42 | + id: fs:fdisk_disk_modify |
| 43 | +- from: fs |
| 44 | + test: 'sfdisk\s+.*(/dev/([hs]d[a-z]|mmcblk[0-9]))' |
| 45 | + description: "Are you sure you want to modify disk partitions? This could erase all data on the disk." |
| 46 | + id: fs:sfdisk_disk_modify |
| 47 | +- from: fs |
| 48 | + test: 'dd\s+.*(?:conv=notrunc|seek=\d+|skip=\d+).*of=/dev/([hs]d[a-z]|mmcblk[0-9])' |
| 49 | + description: "Are you sure you want to write to a specific sector of the disk? This could corrupt data." |
| 50 | + id: fs:dd_advanced_disk_write |
| 51 | +- from: fs |
| 52 | + test: 'gdisk\s+.*(/dev/([hs]d[a-z]|mmcblk[0-9]))' |
| 53 | + description: "Are you sure you want to modify GPT disk partitions? This could erase all data on the disk." |
| 54 | + id: fs:gdisk_disk_modify |
| 55 | +- from: fs |
| 56 | + test: 'partprobe\s+.*(/dev/([hs]d[a-z]|mmcblk[0-9]))' |
| 57 | + description: "Are you sure you want to inform the OS of partition table changes? This could affect mounted partitions." |
| 58 | + id: fs:partprobe_disk_update |
| 59 | +- from: fs |
| 60 | + test: 'blockdev\s+.*(/dev/([hs]d[a-z]|mmcblk[0-9]))' |
| 61 | + description: "Are you sure you want to modify block device parameters? This could affect disk operations." |
| 62 | + id: fs:blockdev_disk_modify |
| 63 | +- from: fs |
| 64 | + test: 'mount\s+.*(/dev/([hs]d[a-z]|mmcblk[0-9]))' |
| 65 | + description: "Are you sure you want to mount this device? This could affect system stability." |
| 66 | + id: fs:mount_operations |
| 67 | +- from: fs |
| 68 | + test: '(?:lvremove|pvremove|vgremove)\s+.*(/dev/([hs]d[a-z]|mmcblk[0-9]))' |
| 69 | + description: "Are you sure you want to remove this logical volume/volume group? This will delete all data." |
| 70 | + id: fs:lvm_operations |
| 71 | +- from: fs |
| 72 | + test: '(?:dump|restore)\s+.*(/dev/([hs]d[a-z]|mmcblk[0-9]))' |
| 73 | + description: "Are you sure you want to backup/restore this filesystem? This could affect system stability." |
| 74 | + id: fs:filesystem_backup |
| 75 | +- from: fs |
| 76 | + test: 'cryptsetup\s+.*(/dev/([hs]d[a-z]|mmcblk[0-9]))' |
| 77 | + description: "Are you sure you want to encrypt/decrypt this device? This could affect data accessibility." |
| 78 | + id: fs:encryption_operations |
0 commit comments