TempDirForURL checks if the passed-in string looks like a URL or "-".

DefaultRuntime if containers.conf fails.

DOCKER used to define the "docker" image format.

Dockerv2ImageManifest is the MIME type of a Docker v2s2 image manifest, suitable for specifying as a value of the PreferredManifestType member of a CommitOptions structure.

IsolationChroot is a more chroot-like environment: less isolation, but with fewer requirements.

IsolationDefault is whatever we think will work best.

IsolationOCI is a proper OCI runtime.

IsolationOCIRootless is a proper OCI runtime in rootless mode.

NetworkDefault is one of the values that BuilderOptions.ConfigureNetwork can take, signalling that the default behavior should be used.

NetworkDisabled is one of the values that BuilderOptions.ConfigureNetwork can take, signalling that network interfaces should NOT be configured for newly-created network namespaces.

NetworkEnabled is one of the values that BuilderOptions.ConfigureNetwork can take, signalling that network interfaces should be configured for newly-created network namespaces.

OCI used to define the "oci" image format.

OCIv1ImageManifest is the MIME type of an OCIv1 image manifest, suitable for specifying as a value of the PreferredManifestType member of a CommitOptions structure.

Package is the name of this package, used in help output and to identify working containers.

PullAlways is one of the values that BuilderOptions.PullPolicy can take, signalling that a fresh, possibly updated, copy of the image should be pulled from a registry before the build proceeds.

PullIfMissing is one of the values that BuilderOptions.PullPolicy can take, signalling that the source image should be pulled from a registry if a local copy of it is not already present.

PullIfNewer is one of the values that BuilderOptions.PullPolicy can take, signalling that the source image should only be pulled from a registry if a local copy is not already present or if a newer version the image is present on the repository.

PullNever is one of the values that BuilderOptions.PullPolicy can take, signalling that the source image should not be pulled from a registry.

DefaultRlimitValue is the value set by default for nofile and nproc.

SBOMMergeStrategyCat literally concatenates the documents.

SBOMMergeStrategyCycloneDXByComponentNameAndVersion adds components from the second document to the first, so long as they have a name+version combination which is not already present in the components array.

SBOMMergeStrategySPDXByPackageNameAndVersionInfo adds packages from the second document to the first, so long as they have a name+versionInfo combination which is not already present in the first document's packages array, and adds hasExtractedLicensingInfos items from the second document to the first, so long as they include a licenseId value which is not already present in the first document's hasExtractedLicensingInfos array.

SEV is a known trusted execution environment type: AMD-SEV (secure encrypted virtualization using encrypted state, requires epyc 1000 "naples").

SNP is a known trusted execution environment type: AMD-SNP (SEV secure nested pages) (requires epyc 3000 "milan").

TempDir is the default for storing temporary files.

TypeBind is the type for mounting host dir.

Version for the Package.

Mount potions for bind.

Deprecated: DefaultCapabilities values should be retrieved from github.com/containers/common/pkg/config.

Deprecated: DefaultNetworkSysctl values should be retrieved from github.com/containers/common/pkg/config.

AdditionalBuildContext contains verbose details about a parsed build context from --build-context.

BuildahDevice is a wrapper around devices.Device with additional support for renaming a device using bind-mount in rootless environments.

BuildOptions can be used to alter how an image is built.

BuildOutputOptions contains the the outcome of parsing the value of a build --output flag.

CommonBuildOptions are resources that can be defined by flags for both buildah from and build.

ConfidentialWorkloadOptions encapsulates options which control whether or not we output an image whose rootfs contains a LUKS-compatibly-encrypted disk image instead of the usual rootfs contents.

IDMappingOptions controls how we set up UID/GID mapping when we set up a user namespace.

NamespaceOption controls how we set up a namespace when launching processes.

SBOMScanOptions encapsulates options which control whether or not we run a scanner on the rootfs that we're about to commit, and how.

Secret is a secret source that can be used in a RUN.

NamespaceOptions provides some helper methods for a slice of NamespaceOption structs.

NetworkConfigurationPolicy takes the value NetworkDefault, NetworkDisabled, or NetworkEnabled.

PullPolicy takes the value PullIfMissing, PullAlways, PullIfNewer, or PullNever.

SBOMMergeStrategy tells us how to merge multiple SBOM documents into one.

TeeType is a supported trusted execution environment type.