@quixoticgeek In theory you shouldn't have to care, but...
@dalias of course you should have to care. You should know what code you're running on your machines. Even if it's abstracted into a container for easier distribution within your organisation.
@quixoticgeek Well it depends on whether you're using what's in that container as part of a system outside it where the integrity of the outputs matter, or using it as a way to isolate stuff you don't want to have to trust.
@dalias why would you be running untrusted code ?