Docker

All AI CI/CD Cloud DevOps Docker eBPF Go Journal Kubernetes Linux Networking Python Security

How Docker Sandboxes works?: Let Agents Run Free.

Claude Code, Gemini CLI, Codex — every AI coding agent you use right now can wreck your host machine. Docker Sandboxes puts a microVM between …

mrcloudbook · Mar 09, 2026 · 13 min read

How to Isolate containers with a user namespace

Your container process thinks it's root. Your host doesn't care. 🔐 By default, UID 0 inside a Docker container is the SAME UID 0 on …

mrcloudbook · Mar 08, 2026 · 22 min read

Docker Security: The Bugs That Tried to Ruin Your Day

Docker actually noticed to have attracted security review and publicly disclosed vulnerabilities. In all likelihood, the bugs that haven't been reported far outnumber those that …

mrcloudbook · Mar 07, 2026 · 28 min read

How a Linux Security Module silently guards your containers

What is AppArmor?Let me be direct with you. I've been running containerized workloads in production for over 4 years. In that time, I've seen everything …

mrcloudbook · Mar 06, 2026 · 17 min read

Docker Security 101: Your Container Is Running as Root and You Don't Even Know It

I've been running containers in production for 4 years, and I'll be real with you: Docker's default configuration is terrifyingly permissive. It's one of those …

mrcloudbook · Mar 05, 2026 · 12 min read

How to Find and Fix Dockerfile Security Issues with Hadolint

How to use Hadolint to lint Dockerfiles, catch security issues and anti-patterns before build, fix common mistakes (version pinning, non-root users, exec-form CMD), and integrate …

mrcloudbook · Mar 03, 2026 · 6 min read