This adds support for: NoNewPrivileges, "DropCapability,RunInit,VolatileTmp`Timezone. With the default being they are enabled as before, but now you can disable them.
There is also a new testcase basepodman.container that tests disabling most podman run options.
This adds support for:
NoNewPrivileges, "DropCapability,RunInit,VolatileTmp`Timezone. With the default being they are enabled as before, but now you can disable them.There is also a new testcase
basepodman.containerthat tests disabling most podman run options.