Comment by dns_snek

Comment by dns_snek 4 days ago

0 replies

View on Hacker News

> does your project attempt to provide any isolation security-wise?

Considering that they provide Docker-in-Docker by default, this would have to be a "no" right now. Having the ability to launch Docker containers is equivalent to having root access on the Docker host by default.