Hi, and thanks for thinking of myself and Singularity. Singularity is not affected to the worm part of the malicious code, but the container does startup some processes within that Singularity may allow. That is because they threw some system commands (e.g. /var/sbin/bash) that is actually a script that does some additional things before exec’ing Bash.

It comes down to trusting your containers. My answer is that you don’t even have all of the information to know if a container can be trusted without Singularity’s cryptographic layered signatures. They are simple to use, easy to manage, and easy to share.

The idea of trusting any software someone downloads from the internet without a signature is quite ludicrous by today’s standards. CentOS, would have been mocked, even back in 2003, if we didn’t sign all packages with a trusted key. The fact that we do this with containers every day, and run those untrusted containers on production servers, AS ROOT, is kinda funny if you think about it.