Can malicious applications running inside a docker container still be harmful?

I am very new to docker (and don’t usually program at a ‘systems’ level). I will be working on an open source project with complete strangers over the web over the next couple of months. I trust them, but I like to not have to trust people (meant in the best possible way).

I would like to know, if I download various repositories from github or elsewhere, and run them inside a docker container, is it possible for them to cause harm to my laptop in any way?

In case it’s relevant, the repositories will mostly be web applications (think django, node), and will likely use databases (postgres etc), and otherwise operate as regular locally hosted web applications. It is possible (like anything from github or the world wide web), that some apps could contain malicious code. I am curious to know if running such an app (containing malicious code) inside a docker container prevents that code from harming anything outside of the docker container (i.e. my laptop)?

How dangerous is this modified exhaustion compared to other harmful conditions?

In this question, I asked about the ramifications of monsters causing exhaustion:

How dangerous is exhaustion?

The answers concluded, that this would generally be very risky and dangerous.

I therefore decided to limit myself to a reduced threat version for the time being, which has the following modifications:

1. Limited effect

A target only gains exhaustion levels this way up to three levels. Any excess levels that would be caused this way are not applied.


2. Easy recovery

Taking a short rest or casting lesser restoration removes one level of exhaustion gained this way. Taking a long rest or casting greater restoration removes all levels of exhaustion gained this way.

How does this compare to other harmful conditions, such as stunned or paralyzed? Could I replace a stun or paralyze effect with one level of this reduced threat exhaustion and maintain a similar power level of the monster?

What are “harmful gases and vapors”?

The necklace of adaptation has the following effect:

While wearing this necklace, you can breathe normally in any Environment, and you have advantage on Saving Throws made against harmful gases and vapors (such as Cloudkill and Stinking Cloud Effects, inhaled Poisons, and the Breath Weapons of some dragons).

Now, harmful gases and vapors is very vague.

The question of what "harmful" means, was discussed in this question:

What defines a harmful effect or ability?

The first effect of the necklace was the subject of this question:

Does the Necklace of Adaptation let someone breathe under the surface of liquids other than water?

I could not, however, find information, on what counts as gases or vapors. The spells cited, cloudkill and stinking cloud are clear, as are "inhalded poisons" since every poison has an application property defining if it is inhaled. The "such as" and "breath weapons of some dragons" do show, however that it this extends to more effects, which are, at least here, not clearly defined.

Being a chemist, I’d rule that poison breath and acid breath, as well as dragon turtle breath would count.

Otherwise, if it says "gas" or "vapor" it probably counts, e.g. the faerie dragon’s euphoria breath.

I’m wondering, however, if there is anything better (preferably official) than "make it up".

How can I stay safe when I’m visiting potentially harmful websites on Android 9.0+ or similar MIUI?

I mean harmful by the fact that they might have ads, popups or other ways in which they might transfer malware to my phone or exploit vulnerabilities. And by visiting I mean interacting, clicking on items found on them, playing videos on them, like adult sites for an example of such a website.

Is there a sandbox or a VM on such Android phone that might help? Or am I secured if I have a basic antivirus, NoScript and an adblocker? Is there any you would recommend?

Can the target of a “Planar Binding” spell be forced to perform an obviously harmful or suicidal command?

The Planar Binding spell has no text excluding “obviously harmful” or “suicidal” instructions. On the other hand, all of the following spells do have such text: Command (1st level enchantment), Suggestion (2nd level enchantment, Compulsion (4th level enchantment), Geas (5th level enchantment), Planar Ally (6th level conjuration) and Mass Suggestion (6th level enchantment)

Under the meta-rule that “there are no hidden rules”, does this mean that the subject of a Planar Binding spell can be given a harmful/suicidal instruction?

I think that RAW, the answer is yes. I’m more interested in RAI and RAF, game balance, and how this helps develop an internally consistent “theory of binding magic” (search this site for “Planar Binding” for numerous other questions related to such a theory).

How harmful is an insidious atmosphere?

An insidious atmosphere “requires the use of protective suits or vacc suits” (inherited from corrosive atmospheres) and “will defeat any personal protective measures in 2 to 12 hours.” (CT-TTB p.83, “Atmosphere”)

How harmful to a human is time spent in a corrosive or insidious atmosphere? Is it insta-death once the protective measures fail? Ongoing damage, which would quickly lead to unconsciousness, but perhaps your party can get you back to a safe environment?

Absent any rules-guidance on the matter, what sort of gaseous mixtures would be an “insidious” atmosphere, such that I can do my own RL research?

Kik app potentially harmful feature

I was on the regular Kik app when someone attached a video, and while watching the video I noticed a button on the video saying “open gallery” which I clicked by mistake. It redirected me to I asked how a video can have a redirect button, people said modded kik allows you to do that. How can I know if it was malware or such? I’ve factory reset my unrooted phone, hopefully that solves it? Thank you