fix(volumes): Edge case for SELinux contexts

docker-compose.yml

@@ -17,7 +17,7 @@ services:
       - "80:80"
       - "443:443"
     volumes:
-      - "/var/run/docker.sock:/var/run/docker.sock:ro"
+      - /var/run/docker.sock:/var/run/docker.sock:ro,z
     extra_hosts:
       - host.docker.internal:172.17.0.1
     healthcheck:
@@ -469,7 +469,7 @@ services:
       - HOMEPAGE_ALLOWED_HOSTS=${HOSTNAME}
     volumes:
       - ${CONFIG_ROOT:-.}/homepage:/app/config:Z
-      - /var/run/docker.sock:/var/run/docker.sock:ro
+      - /var/run/docker.sock:/var/run/docker.sock:ro,z
       - ${DATA_ROOT}:/data:Z
     restart: always
     command:
@@ -486,7 +486,7 @@ services:
     environment:
       - WATCHTOWER_CLEANUP=true
     volumes:
-      - /var/run/docker.sock:/var/run/docker.sock
+      - /var/run/docker.sock:/var/run/docker.sock:z
   autoheal:
     image: willfarrell/autoheal:latest
     container_name: autoheal
@@ -494,7 +494,7 @@ services:
     environment:
       - AUTOHEAL_CONTAINER_LABEL=all
     volumes:
-      - /var/run/docker.sock:/var/run/docker.sock
+      - /var/run/docker.sock:/var/run/docker.sock:z
   tailscale:
     image: tailscale/tailscale:latest
     container_name: tailscale
@@ -508,7 +508,7 @@ services:
       ENABLE_FUNNEL_HTTPS: ${ENABLE_FUNNEL_HTTPS:-false}
     volumes:
       - ${CONFIG_ROOT:-.}/tailscale/state:/var/lib/tailscale:Z # Persist state
-      - /var/run/docker.sock:/var/run/docker.sock # Optional, keep if needed
+      - /var/run/docker.sock:/var/run/docker.sock:z # Optional, keep if needed
     devices:
       - /dev/net/tun:/dev/net/tun
     cap_add: