podman completely overlooked in the discussion

On YouTube there are several video recordings of presentations done by Red Hat's Dan Walsh... several specifically about the various security mechanisms that are available and how they are being utilized with podman. Perhaps podman was overlooked intentionally because it was considered to be primarily targeting application containers... but in later releases of podman, system containers are also doable.

podman also is striving for making unprivledged containers the norm and has put a lot of work into that by utilizing user namespaces among other things. They also have the issue with filesystem ownership on the host vs in the container and trying to find the best way to solve it. I hadn't heard of shiftfs before but perhaps the two projects (LXD and podman) could work on this problem together?