Also why it’s (maybe? ) not a bad idea to configure russian as a language on your system. Some malware looks for language as well as regional configurations
Posting a README with spam or a link to malware is not particularly sophisticated, especially given that Docker Hub literally serves executables that people download and run without any vetting. It would be very easy to find a popular open source project that isn’t containerized and publish an image that contains malware, and convince users to run with —-privileged or —-network=host which are already to most users magical flags they don’t understand.
excludeGeoTargeting contains codes of countries where the malware shouldn’t be installed
"excludeGeoTargeting": [ "RU", "AZ", "AM", "BY", ]