Given docker container id and the process path, is there a way to find the package information of a process running inside the container without actually opening a shell on the container?

on linux this is possible.

@packetzero did you mean something like this ? ==>

select * from file WHERE path LIKE "/%" AND pid_with_namespace = 14677;

something like that. the column name might have changed, or may change soon (cpid ?). Need to follow that PR thread or ask @Stefano Bonicatti if you get really stuck

@packetzero I was stuck at this, perhaps I will contact @Stefano Bonicatti. Thank you!