The no-new-privileges setting prevents the container application processes from gaining new privileges during the execution process.

For most Linux distributions, MKE supports setting no-new-privileges to true in the /etc/docker/daemon.json file. The parameter is not, however, supported on RHEL 7.9, CentOS 7.9, Oracle Linux 7.8, and Oracle Linux 7.9.

This option is not supported on Windows. It is a Linux kernel feature.