Add support to pull mounted volumes from containerd (`containerd_mounts`)

[zayhanlon]

Goal

User story
As a security engineer using Fleet,
I want to pull mounted volumes detail from the containerd table
so that I can pull all of the information my organization requires during a security incident.

Roadmap item

Original requests

Resources

Changes

Product

• Fleet's agent (fleetd) changes: Add containerd_mounts table (see schema below)
• First draft of test plan added
• Once shipped, requester has been notified
• Once shipped, dogfooding issue has been filed

Engineering

• Test plan is finalized

ℹ️  Please read this issue carefully and understand it. Pay special attention to UI wireframes, especially "dev notes".

QA

Risk assessment

• Requires testing in a hosted environment: No
• Requires load testing: No
• Risk level: Low

Test plan

Make sure to go through the list and consider all events that might be related to this story, so we catch edge cases earlier.

1. Run a containerd container with at least one mount (eg. sudo nerdctl run -it -v .:/app/data bash)
2. Query the containerd_mounts table and verify the mount is included in the results

Testing notes

Confirmation

1. Engineer: Added comment to user story confirming successful completion of test plan.
2. QA: Added comment to user story confirming successful completion of test plan.

[zwass]

We would build a table containerd_mounts with the following schema:

func Columns() []table.ColumnDefinition {
    return []table.ColumnDefinition{
        table.TextColumn("namespace"),
        table.TextColumn("container_id"),
        table.TextColumn("source"),
        table.TextColumn("destination"),
        table.TextColumn("type"),
        table.TextColumn("options"),
    }
}