Robuta

https://media.ccc.de/v/all-systems-go-2025-353-unprivileged-containers-with-transient-user-namespaces-and-id-mapping-but-without-setuid-binaries Unprivileged Containers, with Transient User Namespaces and ID Mapping, but Without SETUID Binaries... Many traditional container engines make use of the unprivileged containers user namespaces https://opensource.com/article/19/3/tips-tricks-rootless-buildah How rootless Buildah works: Building containers in unprivileged environments | Opensource.com Buildah is a tool and library for building Open Container Initiative (OCI) container images. rootless buildah works building containers https://2023.everythingopen.au/schedule/presentation/4/ Everything Open 2023 | Presentation: passt & pasta: Modern unprivileged networking for containers... for containers everything open presentation passt