I have a build for some scala code which runs tests against a docker container.
At the moment, the build is not sandboxed and runs thanks to the host docker daemon.
I would like to sandbox this build, How can I run a docker daemon inside the sandbox ?
It seems the solution is related to the
allow-new-privileges option but I could not get it to work.
Moreover, the warning for
allow-new-privileges is worrying, should I use NixOS VM tests to run my tests instead ?
- How can I run a docker daemon inside the sandbox ?
- OR Should I do something like NixOs VM tests instead ?