Is "fly launch --dockerfile" safe to use with untrusted Dockerfiles?

v-yanakiev · January 26, 2025, 6:10pm

As part of a system to run untrusted user code, I’ve considered allowing users to define their own execution environments using a Dockerfile.

So: is calling “fly launch --dockerfile pathToUserDockerfile --name someUserApp” safe? That is, is there some Dockerfile that would allow a user to gain control of the machine calling “fly launch”?

system · February 2, 2025, 9:28pm

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Aikido security report - Docker user root Questions / Help security	4	53	September 19, 2024
Fly Launch is giving a different output than usual Questions / Help flyctl	3	350	November 22, 2023
On demand docker container spinup for safe user code execution Questions / Help	9	1323	March 20, 2023
How do I start an executable within an app deployed as a Docker container? Questions / Help	4	938	June 20, 2022
"fly launch --flycast" sets "force_https = true" (bug?) Questions / Help	2	25	September 27, 2024

Is "fly launch --dockerfile" safe to use with untrusted Dockerfiles?

Related topics