Permissive Whitelist

Computes requires whitelists to authorize execution of docker and non-container binaries. The security policy of the computes-daemon is default deny, which means anything not listed in the whitelist will not be allowed to run.

Example Permissive Whitelist

🚧
Security Warning
Using the whitelist below will allow any binary and any docker image to be run on your machine. Use with caution and only in a restricted environment.

{
  "runners": {
    "bin-json-runner": {
      "manifests": ["*"]
    },
    "docker-json-runner": {
      "manifests": ["*"]
    }
  }
}

This whitelist would allow any docker image and any binary to be run by the computes daemon.

Example Permissive Whitelist

🚧Security Warning

🚧
Security Warning