feat: add secmm-proc

__security/secmem-proc/src/main.rs

@@ -0,0 +1,12 @@
+/// `secmem-proc` is a crate designed to harden a process against
+/// low-privileged attackers running on the same system trying
+/// to obtain secret memory contents of the current process.
+/// More specifically, the crate disables core dumps and tries
+/// to disable tracing on unix-like OSes.
+fn main() {
+    if secmem_proc::harden_process().is_err() {
+        println!("ERROR: could not harden process, exiting");
+        return;
+    }
+    println!("Hello, world!");
+}