J0WI

`/data` does not exist. If `NEXTCLOUD_DATA_DIR` is set, users need to mount their data into this location and take care of the permissions and persistence. Otherwise they may loose all...

> What do you mean with "undefine volumes"? https://docs.docker.com/engine/reference/builder/#volume You can only declare multiple volumes in the Dockerfile but users or child images cannot overwrite or disable them. Every `VOLUME`...

> (For example uncompress would convert a `.tar.gz` file to a `.gz` file, while unarchive would extract the tarball.) \* `.tar` This is useful for `.img.gz`, `.sql.gz`, `.json.gz` etc. where...

I still run in this issue. Is there any chance to get a fix for this or something I where I could help?

See also https://github.com/docker-library/faq#why-does-my-security-scanner-show-that-an-image-has-cves

Do your host and container `www-data` have the same `uid`/`gid`? Do you use SELinux or user namespaces?

I'm not sure if this would still work with `docker-compose`. The `config` option is not known there.

Do you have any additional access control features like SELinux, ACL, xattr etc. enabled on the host?

Did you run `chown`/`find` inside the container or on the host?

> both, by the way... host & container That's bad, the numerical id on the host may differ from the id inside the container for the same group/username. > Just...