Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Why is the root user used? #62

Open
arley9511 opened this issue Jul 28, 2020 · 1 comment
Open

Why is the root user used? #62

arley9511 opened this issue Jul 28, 2020 · 1 comment

Comments

@arley9511
Copy link

It is well known that for container-based environments, leaving the root user as the default is a vulnerability.

Actually I use Quarkus and the official Dockefile does not change the user for a non root, my question is have you considered changing the way these images are built to follow best security practices?
@rhuss
Copy link
Contributor

rhuss commented Aug 30, 2020

You can use the UBI images that uses a non-root user.

For the others we might consider to change, too. But this might hit some serious bacwards compatibility issues.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@rhuss @arley9511