Run Docker as a non-root user #24
Loading…
x
Reference in New Issue
Block a user
No description provided.
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
The container currently runs as root which is less than ideal from a security perspective. I believe something like the following would work. I don't have time to test this myself right now, but will try when I do if someone else has not gotten to it first.
On a similar note, you could make the HTTP port an environment variable so it can also be overridden:
I agree but this is very low priority for me. This app is meant for local deployment and is not production ready.
I tested the user changes above and it appears to work without issue and was going to share a PR, but I can't seem to figure out authenticating when I try to push the changes. I'll try again later and hopefully figure it out when I'm not so tired.
If you could do a PR that would be great. Got to make sure the existing assets will work after the change to rootless. Especially images, and instructions uploaded while the container is root.