diff --git a/roles/container/defaults/main.yaml b/roles/container/defaults/main.yaml
index f6c921a..6c97b9f 100644
--- a/roles/container/defaults/main.yaml
+++ b/roles/container/defaults/main.yaml
@@ -14,3 +14,4 @@ container_auto_start: true
 container_auto_update: true
 container_requires: []
 container_wants: []
+container_add_capabilities: []
diff --git a/roles/container/meta/argument_specs.yaml b/roles/container/meta/argument_specs.yaml
index 5eba2f3..7e5bad7 100644
--- a/roles/container/meta/argument_specs.yaml
+++ b/roles/container/meta/argument_specs.yaml
@@ -173,6 +173,13 @@ argument_specs:
         required: false
         default: {}
 
+      container_add_capabilities:
+        description: List of capabilities to add to the container
+        type: list
+        required: false
+        default: []
+        elements: str
+
       container_requires:
         description: >
           List of systemd units (like other containers) this one depends on.
diff --git a/roles/container/tasks/main.yaml b/roles/container/tasks/main.yaml
index 732f84c..1eda5b7 100644
--- a/roles/container/tasks/main.yaml
+++ b/roles/container/tasks/main.yaml
@@ -54,6 +54,7 @@
     publish: "{{ container_publish_ports }}"
     secrets: "{{ _container_secrets }}"
     env: "{{ container_env }}"
+    cap_add: "{{ container_add_capabilities }}"
     label: "{{ _container_labels if _container_labels | length > 0 else omit }}"
     state: quadlet
     quadlet_file_mode: "0600"