Manage visibility of other containers from build containers

bazooka-ci / bazooka

Continuous Integration and Continuous Deployment Server

http://docs.bazooka-ci.io/

MIT License

60 stars 5 forks source link

Open julienvey opened 9 years ago

julienvey commented 9 years ago

Currently, a build container has access to the Docker socket of the host, and can kill any container if he wants.

We need a way to partition the Docker daemon for each build container.

Solutions we discussed: