type vendor_shell, domain; type vendor_shell_exec, exec_type, vendor_file_type, file_type; # system/sepolicy/public is for vendor-facing type and attribute definitions. # DO NOT ADD allow, neverallow, or dontaudit statements here. # Instead, add such policy rules to system/sepolicy/private/*.te.