Closed NilsIrl closed 2 months ago
If a dockerc-generated executable is made available by someone else than the author of the docker image using gvisor could guarantee that using the image is safe: https://github.com/google/gvisor
Seems unfeasible now that libcrun is used. It wouldn't be just a matter of replacing the runtime executable.
If a dockerc-generated executable is made available by someone else than the author of the docker image using gvisor could guarantee that using the image is safe: https://github.com/google/gvisor