Modern software infrastructure increasingly relies on containers, yet the security assumptions that govern them remain surprisingly blunt. As Docker has become the default substrate for cloud-native ...