## *seitan* was at [DevConf.CZ 2023](https://devconfcz2023.sched.com/event/1MYkc/seitan-a-plant-based-recipe-against-syscall-anxiety)! Check out the [slides](https://seitan.rocks/static/seitan_devconf_2023.pdf) and the [recording](https://seitan.rocks/static/seitan_devconf_2023.webm)
seitan-cookerbuilds a BPF program and a bytecode file (gluten) from a recipe with matches on system calls and corresponding actions
seitan-eaterloads the BPF program associated to the process context into the kernel, and runs the target process. Container engines such as Podman can directly load this program via OCI annotations instead
seitanis the supervisor, getting notifications via
seccomp_unotify, interpreting them according to gluten, and triggering the configured actions as a result