Image should not run as root

Question

Image should not run as root

sathieu opened this issue 3 years ago · 2 comments

sathieu commented 3 years ago

Is your feature request related to a problem? Please describe.

As a security best-practice, images running as root should be limited

Describe the solution you'd like
use USER ... in the Dockerfile

Answer 1 · 2021-11-19T14:19:26.000Z

As the image is FROM scratch, something like this should be used:

FROM ubuntu:latest
RUN useradd -u 10001 scratchuser

FROM scratch
COPY dosomething /dosomething
COPY --from=0 /etc/passwd /etc/passwd
USER scratchuser

ENTRYPOINT ["/dosomething"]

Answer 2 · 2021-12-04T02:09:11.000Z

There has not been any activity to this issue in the last 14 days. It will automatically be closed after 7 more days. Remove the stale label to prevent this.