I am trying to create a lightweight and secure host platform for running containers. One threat that I would defend against is a zero-day container escape with root privileg
