They don't have access to the host filesystem nor environment variables and this attack wouldn't work.
Just because this attack example did not contain container escape exploits does not mean this is safe. Its better than nothing but nothing that will save us.
alt Hacker News
Just because this attack example did not contain container escape exploits does not mean this is safe. Its better than nothing but nothing that will save us.