drop podman rootful/rootless storage · parse containers + images + volumes
flags privileged containers · host mount binds · rootless uid mapping anomalies · timeline + actor rollup
heuristic screener · storage layout varies by podman version and distro — not definitive proof