images come from users, can we scan them to make sure they are secure?
can we remove sudo from our startup script?
ideas like this...
Also - check image size as gcwrapper was found recently to be > 9 gig and crashed notebooks.
How can we ensure that the notebook extension that will be pip installed to enable the hub to communicate with the notebook works with every notebook image? Should we have a checklist every time we deploy a new (or an update to existing) hub?
Also - what about dataset notebooks that we just clone from github? Do we need to do something to ensure those are secure?
images come from users, can we scan them to make sure they are secure? can we remove sudo from our startup script? ideas like this...
Also - check image size as gcwrapper was found recently to be > 9 gig and crashed notebooks. How can we ensure that the notebook extension that will be pip installed to enable the hub to communicate with the notebook works with every notebook image? Should we have a checklist every time we deploy a new (or an update to existing) hub?
Also - what about dataset notebooks that we just clone from github? Do we need to do something to ensure those are secure?