So, this has always bugged me. How do you validate a Docker container? No one wants to pull a laced up container, so there has to be a way one can check. Of course, sticking to original docker containers from Docker Hub would be one method I suppose. Is there some kind of scan one can do? I do this on my Windows computer; scan before installing. Besides looking at code that I would have no idea what is going on, what protocols do you guys use?
Block outgoing traffic, do you mean blocking it at my router or at the level of where I have the container hosted?
I talk fully about software. Add appropriate nftable rules to the container network and that’s it.