Maybe this is asked before, but I cannot find any answer.
I use vaultwarden in docker.
Upon creation, I use bind-mount: -v /somedir/data:/data
If someone get hold of this datadir in unencrypted form, it is possible to get access to all passwords stored? Can they spin up the container, get root access to container and reset admin account?