Public Drone instance & docker security


I’ve setup a Drone instance in single-machine mode, connected to Gitea.

“Just for fun”, I tried to forkbomb the Drone machine during a build step, and the machine and Drone instance didn’t like it much.

That got me thinking, docker is not really a security tool, so how unsecure is it to let the internet run builds on my drone instance?