Because we run on the host, we would be able to gather security information about the various containers running on a given host. Thanks to [docker-py](https://github.com/docker/docker-py), this is relatively straight forward. Here's an example of some of the data we can obtain easily: ``` import docker client = docker.from_env() client.containers.list() [<Container '45e6d2de7c54'>, <Container 'db18e4f20eaa'>, ...] container = client.containers.get('45e6d2de7c54') container.attrs['HostConfig']['CapAdd'] container.attrs['HostConfig']['Privileged'] container.attrs['HostConfig']['Cgroup'] container.attrs['HostConfig']['PublishAllPorts'] container.attrs['HostConfig']['PortBindings'] ```
Because we run on the host, we would be able to gather security information about the various containers running on a given host.
Thanks to docker-py, this is relatively straight forward.
Here's an example of some of the data we can obtain easily: