[security] non-root docker image running user
dvhh opened this issue · 1 comments
dvhh commented
Hello,
From a security point of view, it is considered more secure to run inside the container as a non root user. the change would obviously reduce surface of attack and make remote execution and exploitation more difficult.
The mitigation seem trivial (changes to Dockerfile) and should not impede on the exporter execution.
If you are lacking resource to take care of it, I could commit some time to prepare a pull request.
Best regards and thank you for you attention