From 08412b72bcb4f426c39cfca948fc0229a17c558e Mon Sep 17 00:00:00 2001
From: Stefan Prodan <stefan.prodan@gmail.com>
Date: Wed, 26 Jan 2022 09:51:50 +0200
Subject: [PATCH] Run the CLI as non-root Run the Flux CLI inside the container
 under the nobody user and group.

Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
---
 Dockerfile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/Dockerfile b/Dockerfile
index ffc5c945..4d72c9fb 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -20,4 +20,5 @@ RUN apk add --no-cache ca-certificates
 COPY --from=builder /usr/local/bin/kubectl /usr/local/bin/
 COPY --chmod=755 flux /usr/local/bin/
 
+USER 65534:65534
 ENTRYPOINT [ "flux" ]