Problem/Justification
I tried to run some Java containers in Docker, but when I was running, I could see the Java operating environment in the container in the process of TrueNAS, and I found that the gVisor application can improve the situation.
Impact
The application, as gVisor itself says, improves the security of container operation without causing any modifications to existing containers.
User Story
I want TrueNAS to use this runtime environment by default in the container feature to enhance the container security of truenas, and users can choose to disable it when creating containers through the UI.