docs: Update README

Author: John Doe

README.md

@@ -26,7 +26,7 @@ When use commandline, `hakoniwa-run` will load a default policy configuration na
 [KISS-policy.toml] to ensure a minimal mount namespace created, use `--policy-file`
 to use your custom version.
 
-```sh
+```console
 $ hakoniwa run --verbose -- /bin/bash
 [2022-08-21T09:14:11Z INFO  hakoniwa::cli::run] Configuration: "KISS-policy.toml"
 [2022-08-21T09:14:11Z INFO  hakoniwa::executor] Mount point: host_path: "/tmp/hakoniwa-EJemcsRL", container_path: "/"
@@ -121,13 +121,13 @@ More examples can be found in [hakoniwa/examples].
 
 First, clone this repository and build the docker image:
 
-```sh
+```console
 $ make prodcontainer
 ```
 
 Then, run `hakoniwa` command in the container:
 
-```sh
+```console
 $ docker run --privileged --group-add keep-groups --rm -it hakoniwa-prodcontainer:latest hakoniwa run --verbose -- /bin/bash
 [2023-11-04T09:24:27Z INFO  hakoniwa::cli::run] Configuration: "KISS-policy.toml"
 [2023-11-04T09:24:27Z INFO  hakoniwa::executor] Mount point: host_path: "/tmp/hakoniwa-yBV2slf6", container_path: "/"

hakoniwa-cli/examples/apps-firefox/README.md

@@ -3,6 +3,6 @@
 
 ## Firefox
 
-```sh
+```console
 $ hakoniwa run --policy-file ./policy.toml -- /usr/bin/firefox
 ```

hakoniwa-cli/examples/apps-kde/README.md

@@ -3,7 +3,7 @@
 
 ## KDE
 
-```sh
+```console
 # KDE - Dolphin
 $ hakoniwa run --policy-file ./policy.toml -- /usr/bin/dolphin
 

hakoniwa-cli/examples/apps-smplayer/README.md

@@ -3,6 +3,6 @@
 
 ## SMPlayer
 
-```sh
+```console
 $ hakoniwa run --policy-file ./policy.toml -- /usr/bin/smplayer
 ```

hakoniwa-cli/examples/apps-xorg/README.md

@@ -3,7 +3,7 @@
 
 ## Xorg
 
-```sh
+```console
 # Xorg - xinput
 $ hakoniwa run --policy-file ./policy.toml -- /usr/bin/xinput
 ⎡ Virtual core pointer                          id=2    [master pointer  (3)]

hakoniwa-cli/examples/howto-seccomp-syscalls.md

@@ -5,7 +5,7 @@
 
 Start `audit` service:
 
-```sh
+```console
 $ sudo systemctl start auditd
 ```
 
@@ -19,7 +19,7 @@ syscalls = []
 
 Use `--verbose` flag to run the COMMAND:
 
-```sh
+```console
 $ hakoniwa run --policy-file ./policy.toml --verbose -- echo
 ...
 [2022-08-22T09:15:56Z INFO  hakoniwa::executor] Seccomp: enabled (syscalls: 0):
@@ -30,7 +30,7 @@ $ hakoniwa run --policy-file ./policy.toml --verbose -- echo
 
 Copy `sudo ausearch ...` and run it:
 
-```sh
+```console
 $ sudo ausearch -ts 17:15:56 -m seccomp -i
 ----
 type=SECCOMP msg=audit(08/22/2022 17:15:56.273:401) : auid=johndoe uid=johndoe gid=johndoe ses=1 pid=3443 comm=hakoniwa exe=/usr/bin/hakoniwa sig=SIG0 arch=x86_64 syscall=execve compat=0 ip=0x7fb5638f2d1b code=log
@@ -47,7 +47,7 @@ type=SECCOMP msg=audit(08/22/2022 17:15:56.273:470) : auid=johndoe uid=johndoe g
 
 To summarize:
 
-```sh
+```console
 $ sudo ausearch -ts 17:15:56 -m seccomp -i | awk -F " : " '{ print $2 }' | awk -F "[ =]" '{ print $20 }' | sort | uniq
 access
 arch_prctl

hakoniwa-cli/examples/howto-xorg-apps.md

@@ -24,14 +24,14 @@ HOME       = {{ os_env "HOME"       }}
 
 Then run:
 
-```sh
+```console
 $ hakoniwa run --policy-file ./policy.toml -- /usr/bin/xterm
 ```
 
 If you get an error message `Authorization required, but no authorization
 protocol specified`. Try this to fix it:
 
-```sh
+```console
 # To provide access to an application to the graphical server. Use `xhost -` to get things back to normal.
 $ xhost +
 ```

hakoniwa-cli/examples/lang-c/README.md

@@ -3,7 +3,7 @@
 
 ## GCC with static linking
 
-```sh
+```console
 # Compile
 $ hakoniwa run --setenv PATH=$PATH --work-dir . -- /usr/bin/gcc --static main.c -o main
 

hakoniwa-cli/examples/lang-cpp/README.md

@@ -3,7 +3,7 @@
 
 ## G++ with static linking
 
-```sh
+```console
 # Compile
 $ hakoniwa run --setenv PATH=$PATH --work-dir . -- /usr/bin/g++ --static main.cpp -o main
 

hakoniwa-cli/examples/lang-go/README.md

@@ -3,7 +3,7 @@
 
 ## Go
 
-```sh
+```console
 # Compile
 $ hakoniwa run --setenv HOME=/hako --setenv GOTMPDIR=/hako --work-dir . -- /usr/bin/go build main.go
 

hakoniwa-cli/examples/lang-java/README.md

@@ -3,7 +3,7 @@
 
 ## Java
 
-```sh
+```console
 # Compile
 $ hakoniwa run --work-dir . -- /usr/bin/javac main.java
 

hakoniwa-cli/examples/lang-python/README.md

@@ -3,7 +3,7 @@
 
 ## Python3
 
-```sh
+```console
 # Run
 $ hakoniwa run --policy-file ./policy.toml --work-dir . -- /usr/bin/python3 main.py
 Hello, World!

hakoniwa-cli/examples/lang-ruby/README.md

@@ -3,7 +3,7 @@
 
 ## Ruby
 
-```sh
+```console
 # Run
 $ hakoniwa run --policy-file ./policy.toml --work-dir . -- /usr/bin/ruby main.rb
 Hello, World!

hakoniwa-cli/examples/lang-typescript/README.md

@@ -3,7 +3,7 @@
 
 ## TypeScript
 
-```sh
+```console
 # Compile
 $ hakoniwa run --work-dir . -- /usr/bin/tsc main.ts --outFile main.js
 

hakoniwa-cli/examples/seccomp-allowlist/README.md

@@ -3,7 +3,7 @@
 
 ## allowlist mode
 
-```sh
+```console
 $ hakoniwa run --policy-file ./policy.toml --verbose -- /usr/bin/echo "Hako!"
 [2023-11-03T14:40:16Z INFO  hakoniwa::cli::run] Configuration: "./policy.toml"
 [2023-11-03T14:40:16Z INFO  hakoniwa::executor] Mount point: host_path: "/tmp/hakoniwa-hyEJAvtS", container_path: "/"

hakoniwa-cli/examples/seccomp-audit/README.md

@@ -3,7 +3,7 @@
 
 ## audit mode
 
-```sh
+```console
 $ hakoniwa run --policy-file ./policy.toml --verbose -- /usr/bin/echo "Hako!"
 [2023-11-03T14:38:35Z INFO  hakoniwa::cli::run] Configuration: "./policy.toml"
 [2023-11-03T14:38:35Z INFO  hakoniwa::executor] Mount point: host_path: "/tmp/hakoniwa-NF6FOZOL", container_path: "/"

hakoniwa-cli/examples/seccomp-denylist/README.md

@@ -3,7 +3,7 @@
 
 ## denylist mode
 
-```sh
+```console
 # Wget
 $ hakoniwa run --policy-file ./policy.toml --verbose -- wget example.com
 [2023-11-03T14:54:20Z INFO  hakoniwa::cli::run] Configuration: "./policy.toml"

hakoniwa-cli/examples/usage-command.md

@@ -3,7 +3,7 @@
 
 ## sh
 
-```sh
+```console
 $ hakoniwa run
 bash: cannot set terminal process group (-1): Inappropriate ioctl for device
 bash: no job control in this shell
@@ -27,7 +27,7 @@ $
 
 ## ls
 
-```sh
+```console
 $ hakoniwa run -- ls
 bin  dev  lib  lib64  proc  usr
 
@@ -47,7 +47,7 @@ bin  dev  hako  lib  lib64  proc  usr
 
 ## pwd
 
-```sh
+```console
 $ hakoniwa run -- pwd
 /
 
@@ -58,7 +58,7 @@ $ hakoniwa run --work-dir . -- pwd
 
 ## ps
 
-```sh
+```console
 $ hakoniwa run -- ps aux
 USER         PID %CPU %MEM    VSZ   RSS TTY      STAT START   TIME COMMAND
 5001           1  0.0  0.0   6904  2104 ?        R+   05:32   0:00 ps aux
@@ -67,7 +67,7 @@ USER         PID %CPU %MEM    VSZ   RSS TTY      STAT START   TIME COMMAND
 
 ## whoami
 
-```sh
+```console
 $ hakoniwa run -- whoami
 whoami: cannot find name for user ID 5001: No such file or directory
 
@@ -81,7 +81,7 @@ root
 
 ## hostname
 
-```sh
+```console
 $ hakoniwa run -- hostname
 hakoniwa
 
@@ -92,7 +92,7 @@ myhostname
 
 ## ping
 
-```sh
+```console
 $ hakoniwa run --share-net --ro-bind /etc/resolv.conf -- ping example.com -c 3
 PING example.com(2606:2800:220:1:248:1893:25c8:1946 (2606:2800:220:1:248:1893:25c8:1946)) 56 data bytes
 64 bytes from 2606:2800:220:1:248:1893:25c8:1946 (2606:2800:220:1:248:1893:25c8:1946): icmp_seq=1 ttl=54 time=252 ms
@@ -107,7 +107,7 @@ rtt min/avg/max/mdev = 176.668/242.301/297.814/49.972 ms
 
 ## wget
 
-```sh
+```console
 $ hakoniwa run --share-net --ro-bind /etc/resolv.conf --work-dir . -- wget example.com
 ERROR: could not open HSTS store. HSTS will be disabled.
 --2022-08-12 06:25:25--  http://example.com/
@@ -125,7 +125,7 @@ index.html                              100%[===================================
 
 ## env
 
-```sh
+```console
 $ hakoniwa run -- env
 TERM=xterm-256color
 

hakoniwa-cli/examples/usage-limit.md

@@ -5,7 +5,7 @@
 
 Limit the maximum size of the COMMAND's virtual memory
 
-```sh
+```console
 # 16MB
 $ hakoniwa run --limit-as 16000000 -- stress --vm 1 --vm-bytes 16M
 stress: info: [1] dispatching hogs: 0 cpu, 0 io, 1 vm, 0 hdd
@@ -21,7 +21,7 @@ stress: FAIL: [1] (452) failed run completed in 0s
 
 Limit the maximum size of a core file in bytes that the COMMAND may dump
 
-```sh
+```console
 # No core file
 $ hakoniwa run --limit-core 0 -- echo
 ```
@@ -31,7 +31,7 @@ $ hakoniwa run --limit-core 0 -- echo
 
 Limit the amount of CPU time that the COMMAND can consume, in seconds
 
-```sh
+```console
 # Killed in 2s
 $ hakoniwa run --limit-cpu 2 -- stress -c 1
 stress: info: [1] dispatching hogs: 1 cpu, 0 io, 0 vm, 0 hdd
@@ -51,7 +51,7 @@ Fri Aug 12 09:17:09 AM UTC 2022
 
 Limit the maximum size in bytes of files that the COMMAND may create
 
-```sh
+```console
 # 2bytes
 $ hakoniwa run --limit-fsize 2 -- dd if=/dev/random of=output.txt count=1 bs=4
 dd: error writing 'output.txt': File too large
@@ -65,7 +65,7 @@ dd: error writing 'output.txt': File too large
 
 Limit the maximum file descriptor number that can be opened by the COMMAND
 
-```sh
+```console
 # 2
 $ hakoniwa run --limit-nofile 2 -- echo
 echo: error while loading shared libraries: libc.so.6: cannot open shared object file: Error 24
@@ -76,7 +76,7 @@ echo: error while loading shared libraries: libc.so.6: cannot open shared object
 
 Limit the amount of wall time that the COMMAND can consume, in seconds
 
-```sh
+```console
 # Killed in 2s
 $ date; hakoniwa run --limit-walltime 2 -- sleep 5; date
 Fri Aug 12 09:17:40 AM UTC 2022

hakoniwa-cli/examples/usage-namespace.md

@@ -5,7 +5,7 @@
 
 Retain the NETWORK namespace
 
-```sh
+```console
 $ hakoniwa run -- ping 127.0.0.1 -c 3
 $ echo $?
 2
@@ -26,7 +26,7 @@ rtt min/avg/max/mdev = 0.068/0.074/0.080/0.005 ms
 
 Retain the UTS namespace
 
-```sh
+```console
 $ hakoniwa run -- hostname
 hakoniwa
 

hakoniwa-cli/examples/usage-verbose.md

@@ -5,7 +5,7 @@
 
 Use verbose output
 
-```sh
+```console
 $ hakoniwa run --verbose -- echo "Hako!"
 [2022-08-21T10:17:39Z INFO  hakoniwa::cli::run] Configuration: "KISS-policy.toml"
 [2022-08-21T10:17:39Z INFO  hakoniwa::executor] Mount point: host_path: "/tmp/hakoniwa-s8wvt60l", container_path: "/"