subjectId
inScope
Local Docker daemon control — list / run / stop / logs / exec
on containers. Strong fit for dev-loop agents that need to
spin up sandboxes or inspect a running stack.
outOfScope
Production orchestration (use Kubernetes / ECS / Nomad clients
instead), remote daemons over the public internet, and
rootless-only environments without docker-socket access.
outOfScopeReasonIds