From 5ae3ce926ba518d07dffebee372ddd8d2ad0a60c Mon Sep 17 00:00:00 2001
From: vpachchi <vineela.pachchipulusu@windriver.com>
Date: Wed, 5 Nov 2025 06:37:29 -0500
Subject: [PATCH] Create non-root user for security complaince

Create non-root user for security compliance (CIS Docker v1.5.0 - 4.1)

TestPlan:
PASS : Build the container image
PASS : Run a container from the image

Change-Id: I622f427a88ee6f9e770fd7467794271e3b85f899
Signed-off-by: vpachchi <vineela.pachchipulusu@windriver.com>
---
 Dockerfile | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index e594ed8..63693a3 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -76,7 +76,8 @@ RUN addgroup -S $group \
     && chown -R $user:$group /var/log/$user \
     && chown -R $user:$group /src \
     && chown -R $user:$group /configs \
-    && chown -R $user:$group /etc/o2/
+    && chown -R $user:$group /etc/o2/ \
+    && chown -R $user:$group /.venv
 
 COPY helm_sdk/ /src/helm_sdk/
 
@@ -90,7 +91,8 @@ COPY o2ims/ /src/o2ims/
 
 WORKDIR /src
 
-# USER $user
+# Create non-root user for security compliance (CIS Docker v1.5.0 - 4.1)
+USER $user
 ENV PYTHONHASHSEED=0
 ENV PATH="/.venv/bin:${PATH}"
 ENV PYTHONPATH="/src"
-- 
2.16.6