However, I agree that custom SELinux modules should be monitored. I will talk to the other people in the security team if we can get this into rpmlint or some other monitoring and perform reviews on submissions.
I will create a wiki page on submission guidelines / review process when I know more.
So, I talked to the others and we agreed that we will implement passive monitoring for the custom SELinux modules and contact people directly if something is really wrong. So from the packager's side, just submit as usual and unless you hear something from us, you're fine. -- Cathy Hu <cahu@suse.de> SELinux Security Engineer GPG: 5873 CFD1 8C0E A6D4 9CBB F6C4 062A 1016 1505 A08A SUSE Software Solutions Germany GmbH Frankenstrasse 146 90461 Nürnberg Geschäftsführer: Ivo Totev, Andrew McDonald, Werner Knoblich (HRB 36809, AG Nürnberg)