I have a build for some scala code which runs tests against a docker container.
At the moment, the build is not sandboxed and runs thanks to the host docker daemon.
I would like to sandbox this build, How can I run a docker daemon inside the sandbox ?
It seems the solution is related to the allow-new-privileges
option but I could not get it to work.
Moreover, the warning for allow-new-privileges
is worrying, should I use NixOS VM tests to run my tests instead ?
To summarize:
- How can I run a docker daemon inside the sandbox ?
- OR Should I do something like NixOs VM tests instead ?