COT_ARG_* |
[] |
Additional Podman/Docker arguments, one argument per variable |
COT_ARGS |
"" |
Additional Podman/Docker arguments, separated by whitespace ( ) |
COT_CAP_ADD |
[] |
--cap-add , separated by comma (, ) |
COT_CAP_DROP |
[] |
--cap-drop , separated by comma (, ) |
COT_CPUS |
80% of the available cores on Linux, no default value otherwise |
--cpus |
COT_DEBUG |
false |
Send debug output to /dev/stderr |
COT_DRY_RUN |
false |
Do not actually execute Docker/Podman command |
COT_ENV_* |
[] |
Additional environment variables to set (COT_ENV_foo=bar will become --env=foo=bar ) |
COT_IMAGE |
ghcr.io/fnkr/cot |
Docker/Podman image to use |
COT_INTERACTIVE |
true |
--interactive |
COT_LIMIT |
[] |
Directories in which cot is allowed to run, separated by colon (: ) |
COT_MEMORY |
- |
--memory |
COT_MEMORY_RESERVATION |
- |
--memory-reservation |
COT_NET |
"slirp4netns" (Podman), "bridge" (Docker) |
--net |
COT_READ_ONLY_ROOT |
false if Podman is used, true if Docker is used |
Mount root directory (/ ) read-only |
COT_SHELL |
"/bin/sh" |
Default shell for user in container in /etc/passwd |
COT_MOUNT_SSH_KNOWN_HOSTS |
true |
Mount known hosts ~/.ssh/known_hosts file from host |
COT_TMP |
fmt.Sprintf("/tmp/%s-%s-%s", BinName(), ToolName(), UID()) |
Path to temporary directory, used for /etc/{passwd,group} , /tmp and /home/$USER mounts |
COT_TOOL |
"podman" if found in $PATH , "docker" if found in $PATH and $USER is in docker group, otherwise "sudo docker" |
podman , docker , or path to Podman or Docker (which must end with /podman or /docker ) |
COT_TTY |
true |
--tty |
COT_VOLUME_* |
[] |
Additional volumes to mount (COT_VOLUME_foo=/mnt/cot:/mnt:ro,z will become --volume=/mnt/cot:/mnt:ro,z ) |
COT_ADD_USER_GROUPS |
false |
Add groups of current user (--add-group ) |
COT_ADD_USER_GROUPS_EXCEPT |
[] |
Comma separated list of group names to exclude when adding groups of current user |
COT_ADD_USER_GROUPS_EXCEPT_* |
[] |
Additional group names to exclude or not to exclude when adding groups of current user (COT_ADD_USER_GROUPS_EXCEPT_docker=true is equal to COT_ADD_USER_GROUPS_EXCEPT=docker , COT_ADD_USER_GROUPS_EXCEPT_docker=false will override COT_ADD_USER_GROUPS_EXCEPT=docker ). __ will be replaced with - . |
COT_ADD_GROUPS |
[] |
Comma separated list of group names to add (--add-group ) |
COT_ADD_GROUP_* |
[] |
Additional group names to add or not to add (COT_ADD_GROUP_wheel=true will become --add-group=<id of wheel group> , COT_ADD_GROUP_wheel=false will override COT_ADD_GROUPS=wheel ). __ will be replaced with - . |
EDITOR |
- |
Variable will be forwarded to container as-is |
SSH_AUTH_SOCK |
- |
Path to SSH agent socket (will be mounted in container if set) |
COT_MAKE_SSH_AUTH_SOCK_ACCESSIBLE |
true |
Automatically apply platform-specific fixes to ensure $SSH_AUTH_SOCK is accessible from Docker containers |