No process limit on container

AI security governance · MCP security

Severity

medium

What it is

Docker container has no --pids-limit — vulnerable to fork bombs.

How Igris detects it

Igris's Resource Exhaustion Detector flags this during MCP security scans of your configuration.

References

Related MCP security rules

Secure your AI estate with Igris