Rundeck 3.2.4-20200318 exposes an option in the Docker Job 'docker / image / run' Workflow to mount a container's root filesystem as read-only.
However, when the user specifies this option in the UI --read-only is not appended to docker run, so the container's filesystem is still read-writable.
I'd propose the UI be changed for this to be a dropdown select with values 'true' and 'false', similar to the way the --rm option is handled.
Rundeck 3.2.4-20200318 exposes an option in the Docker Job 'docker / image / run' Workflow to mount a container's root filesystem as read-only.
However, when the user specifies this option in the UI
--read-onlyis not appended todocker run, so the container's filesystem is still read-writable.I'd propose the UI be changed for this to be a dropdown select with values 'true' and 'false', similar to the way the
--rmoption is handled.