I am trying to build and run a remote bamboo agent (based from atlassian/bamboo-agent-base) and install podman to have the capability of (rootless) building docker images with this agent.
Unfortunately, I am stuck with podman not working unless I disable quite some security settings and letting the agent container run in privileged mode (and at this step then podman itself is not necessary anymore as I could simply do a docker-in-docker setup / give the container access to the host's docker.sock instead).
How can I achieve a safe setup, i.e., no extended / root privileges for a remote bamboo agent but capability to build docker images?
