# container-security

5 articlestagged with “container-security”

Sandboxing AI Code Generation

Design patterns for sandboxing AI code generation and execution, covering container isolation, capability restriction, network controls, and runtime monitoring.

code-gen-securitysandboxingcontainer-securityisolation

Expert

LLM-Generated Dockerfile Security

Analyzing security vulnerabilities commonly introduced by AI-generated Dockerfiles and container configurations.

code-gen-securitydockercontainer-securitysupply-chain

Intermediate

Kubernetes Security for ML Workloads

Comprehensive analysis of Kubernetes attack surfaces specific to machine learning workloads, including GPU operator exploitation, model serving namespace attacks, and cluster-level privilege escalation through ML components.

kubernetesml-infrastructurecontainer-securitygpucluster-attacks

Advanced

Lab: Containerized Model Breakout

Explore techniques for escaping from containerized AI applications to the host system, testing container isolation boundaries in ML deployment environments.

labcontainer-securitybreakoutinfrastructure

Advanced

Modal Serverless AI Deployment Testing

End-to-end walkthrough for security testing Modal serverless AI deployments: function enumeration, web endpoint exploitation, secret management assessment, volume security testing, and container escape analysis.

modalserverlesscontainer-securityweb-endpointssecretsvolumeswalkthrough

Intermediate