[plan] Audit critical system libraries in /lib and /lib64 for agent container

[github-actions]

Objective

Identify and document essential system libraries from /lib and /lib64 directories that should be mounted to support core system operations in the agent container.

Context

While #11972 addresses /usr/lib shared libraries for utilities, the agent container also needs access to critical system libraries in /lib and /lib64 directories. These include:

• C standard library (libc)
• Dynamic linker/loader (ld-linux)
• Core system libraries (libm, libdl, libpthread)
• Security libraries (libselinux, libapparmor)

Approach

1. Use ldd to analyze library dependencies of mounted /usr/bin utilities
2. Identify which libraries come from /lib and /lib64 vs /usr/lib
3. Test container functionality without these directories mounted
4. Document minimum required libraries for basic operations
5. Categorize by priority: critical (container won't function), important (common utilities need), optional (specialized use cases)

Files to Create

• Create: specs/agent-container-system-libraries.md (audit results)
• Update: specs/agent-container-utilities.md (cross-reference library deps)

Acceptance Criteria

• Audit identifies at least 10 system libraries from /lib and /lib64
• Libraries categorized as critical/important/optional
• Document explains dependency chains for key utilities
• Mounting recommendations provided with security considerations
• Testing confirms minimal set enables basic workflows

Related

Complements #11972 (focuses on /usr/lib) and builds on #11971 (utility audit)
Related to #11970

AI generated by Plan Command for #11970

[github-actions]

🍪 Issue Monster has assigned this to Copilot!

I've identified this issue as a good candidate for automated resolution and assigned it to the Copilot agent.

The Copilot agent will analyze the issue and create a pull request with the fix.

Om nom nom! 🍪

AI generated by Issue Monster