grist-core icon indicating copy to clipboard operation
grist-core copied to clipboard

Published 20 hours ago verified publisher icon gristlabs

Container image is privileged

Open almereyda opened this issue 1 year ago • 1 comments

When displaying the /boot page of my instance, it says:

grafik

System user is sane

It is good practice not to run Grist as the root user.

User appears to be root (UID 0)

It is good practice to provide unprivileged Container images, by using the USER directive. This has implications on the way in which the image is built.

Reference:

almereyda avatar May 13 '24 09:05 almereyda

Thanks @almereyda. You can find some context for this in https://github.com/gristlabs/grist-core/pull/789

paulfitz avatar May 13 '24 13:05 paulfitz