NIM Container Security - openclawsecurity.net Forum https://openclawsecurity.net/community/nemoclaw-nim-container-security/ openclawsecurity.net Discussion Board en-US Tue, 30 Jun 2026 13:14:35 +0000 wpForo 60 Am I overthinking it by wanting to run NIM on a separate, isolated VLAN? https://openclawsecurity.net/community/nemoclaw-nim-container-security/am-i-overthinking-it-by-wanting-to-run-nim-on-a-separate-isolated-vlan/ Tue, 30 Jun 2026 04:00:57 +0000 NIM Container Security Hector M. https://openclawsecurity.net/community/nemoclaw-nim-container-security/am-i-overthinking-it-by-wanting-to-run-nim-on-a-separate-isolated-vlan/ Just built a local registry mirror for NIM images - reduces external pull risk. https://openclawsecurity.net/community/nemoclaw-nim-container-security/just-built-a-local-registry-mirror-for-nim-images-reduces-external-pull-risk/ Mon, 29 Jun 2026 20:00:57 +0000 NIM Container Security Vince T. https://openclawsecurity.net/community/nemoclaw-nim-container-security/just-built-a-local-registry-mirror-for-nim-images-reduces-external-pull-risk/ Thoughts on the new Pod Security Standards for running NIM in Kubernetes? https://openclawsecurity.net/community/nemoclaw-nim-container-security/thoughts-on-the-new-pod-security-standards-for-running-nim-in-kubernetes/ Mon, 29 Jun 2026 10:00:17 +0000 NIM Container Security Erin V. https://openclawsecurity.net/community/nemoclaw-nim-container-security/thoughts-on-the-new-pod-security-standards-for-running-nim-in-kubernetes/ Switched from environment variables to a secrets manager for NIM config. Much better. https://openclawsecurity.net/community/nemoclaw-nim-container-security/switched-from-environment-variables-to-a-secrets-manager-for-nim-config-much-better/ Sun, 28 Jun 2026 05:02:01 +0000 NIM Container Security Lei Zhang https://openclawsecurity.net/community/nemoclaw-nim-container-security/switched-from-environment-variables-to-a-secrets-manager-for-nim-config-much-better/ Has anyone tried to run NIM with all capabilities dropped? https://openclawsecurity.net/community/nemoclaw-nim-container-security/has-anyone-tried-to-run-nim-with-all-capabilities-dropped/ Sat, 27 Jun 2026 14:01:16 +0000 NIM Container Security Ivy Contra https://openclawsecurity.net/community/nemoclaw-nim-container-security/has-anyone-tried-to-run-nim-with-all-capabilities-dropped/ ELI5: What does the NIM container actually need network access for? https://openclawsecurity.net/community/nemoclaw-nim-container-security/eli5-what-does-the-nim-container-actually-need-network-access-for/ Fri, 26 Jun 2026 16:01:51 +0000 NIM Container Security Ivan Petrov https://openclawsecurity.net/community/nemoclaw-nim-container-security/eli5-what-does-the-nim-container-actually-need-network-access-for/ Beginner question: What are the minimal capabilities needed for a NIM container? https://openclawsecurity.net/community/nemoclaw-nim-container-security/beginner-question-what-are-the-minimal-capabilities-needed-for-a-nim-container/ Thu, 25 Jun 2026 18:00:20 +0000 NIM Container Security Oliver Vance https://openclawsecurity.net/community/nemoclaw-nim-container-security/beginner-question-what-are-the-minimal-capabilities-needed-for-a-nim-container/ Unpopular opinion: Running NIM as root inside the container is a non-issue if you're using user namespaces. https://openclawsecurity.net/community/nemoclaw-nim-container-security/unpopular-opinion-running-nim-as-root-inside-the-container-is-a-non-issue-if-youre-using-user-namespaces/ Thu, 25 Jun 2026 10:03:48 +0000 NIM Container Security Oli N. https://openclawsecurity.net/community/nemoclaw-nim-container-security/unpopular-opinion-running-nim-as-root-inside-the-container-is-a-non-issue-if-youre-using-user-namespaces/ Switched from official NIM container to my own build - here's why. https://openclawsecurity.net/community/nemoclaw-nim-container-security/switched-from-official-nim-container-to-my-own-build-heres-why/ Thu, 25 Jun 2026 09:01:00 +0000 NIM Container Security Tina G. https://openclawsecurity.net/community/nemoclaw-nim-container-security/switched-from-official-nim-container-to-my-own-build-heres-why/ Breaking: Dependency confusion risk in NIM's Python package installation method. https://openclawsecurity.net/community/nemoclaw-nim-container-security/breaking-dependency-confusion-risk-in-nims-python-package-installation-method/ Wed, 24 Jun 2026 08:01:13 +0000 NIM Container Security Ed Morrison https://openclawsecurity.net/community/nemoclaw-nim-container-security/breaking-dependency-confusion-risk-in-nims-python-package-installation-method/