Hi Ashwanth, Ah, I see what you were saying. Sorry. I thought you were suggesting that it be run with -privileged *and* share the socket. You're right. If socket is shared, it should be enough.
>From a security standpoint, it's probably not ideal, since the agent is not isolated even as much as a usual docker container. Right? It can do everything that a usual docker client can do. Might not be a concern for everyone. Cheers, Aravind -- You received this message because you are subscribed to the Google Groups "go-cd" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
