Code Review / pti / o2.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | patch | inline | side by side (parent: 61595c6)
Create non-root user for security complaince 89/15189/1
authorvpachchi <vineela.pachchipulusu@windriver.com>
Wed, 5 Nov 2025 11:37:29 +0000 (06:37 -0500)
committervpachchi <vineela.pachchipulusu@windriver.com>
Wed, 5 Nov 2025 11:37:37 +0000 (06:37 -0500)
Create non-root user for security compliance (CIS Docker v1.5.0 - 4.1)

TestPlan:
PASS : Build the container image
PASS : Run a container from the image

Change-Id: I622f427a88ee6f9e770fd7467794271e3b85f899
Signed-off-by: vpachchi <vineela.pachchipulusu@windriver.com>
Dockerfile patch | blob | history

diff --git a/Dockerfile b/Dockerfile
index e594ed8..63693a3 100644 (file)
--- a/Dockerfile
+++ b/Dockerfile
@@ -76,7 +76,8 @@ RUN addgroup -S $group \
     && chown -R $user:$group /var/log/$user \
     && chown -R $user:$group /src \
     && chown -R $user:$group /configs \
-    && chown -R $user:$group /etc/o2/
+    && chown -R $user:$group /etc/o2/ \
+    && chown -R $user:$group /.venv
 
 COPY helm_sdk/ /src/helm_sdk/
 
@@ -90,7 +91,8 @@ COPY o2ims/ /src/o2ims/
 
 WORKDIR /src
 
-# USER $user
+# Create non-root user for security compliance (CIS Docker v1.5.0 - 4.1)
+USER $user
 ENV PYTHONHASHSEED=0
 ENV PATH="/.venv/bin:${PATH}"
 ENV PYTHONPATH="/src"
"inf_pti_o2"