The tmpfs property follows docker by default, which mounts --tmpfs filesystems noexec, nosuid, nodev.
These are not particularly useful defaults in a lot of circumstances (i.e. providing /tmp to a container) because a huge amount of software expects to be able to execute things out of such directories.
It would be convenient to support additional syntax which allow being explicit about the mount options to tmpfs - i.e. --tmpfs /tmp:defaults or --tmpfs /tmp:- for no special options, --tmpfs /tmp:nosuid for adding options.
The tmpfs property follows docker by default, which mounts --tmpfs filesystems noexec, nosuid, nodev.
These are not particularly useful defaults in a lot of circumstances (i.e. providing
/tmpto a container) because a huge amount of software expects to be able to execute things out of such directories.It would be convenient to support additional syntax which allow being explicit about the mount options to tmpfs - i.e.
--tmpfs /tmp:defaultsor--tmpfs /tmp:-for no special options,--tmpfs /tmp:nosuidfor adding options.