Message: Mounting the proc directory from the host system into a container gives access... #623
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
{{ message }}
Is your feature request related to a problem? Please describe.
In some circumstance, developer want to mount specific filesystem or subdirectory located in /proc, but the current message
suggest that whole /proc is mounted.
Therefore, some developer see this as a false positive. In example, they only mount a subdirectory two or three level down from /proc level.
Describe the solution you'd like
A clear and concise description of what you want to happen.
Is it possible to modify the message?
Current Message:
Mounting the proc directory from the host system into a container gives access to information about other containers running on the same host and can allow container breakout"
Suggested:
"Mounting the proc directory or its contents, subdirectories from the host system into a container could gives access to information about other containers running on the same host and can allow container breakout"
or
"Mounting the proc filesystem from the host system into a container could gives access to information about other containers running on the same host and can allow container breakout"
The text was updated successfully, but these errors were encountered: