1:
Sensitive keys in codebases
2:
DIND (docker-in-docker) exploitation