Draft: Change default user to non-root
-
Please check this box if this contribution uses AI-generated content (including content generated by GitLab Duo features) as outlined in the GitLab DCO & CLA
What does this MR do?
I am trying to run this capability in my k8s cluster, but the cluster admission controller will not allow non-root or named users to run for security reasons. This change gives the default user as a UID so that the admission controller can confidently evaluate the container image before starting it up.
The error I'm trying to avoid is
Error: container has runAsNonRoot and image will run as root
TODO:
-
Add FIPS Dockerfile -
Understand test jobs and fix what I broke
What are the relevant issue numbers?
Repo I'm submitting the MR to doesn't seem to have issues open.
Does this MR meet the acceptance criteria?
-
Changelog entry added -
Documentation created/updated for GitLab EE, if necessary -
Documentation created/updated for this project, if necessary -
Documentation reviewed by technical writer or follow-up review issue created -
Tests updated/added for this feature/bug -
Job definition updated, if necessary -
Conforms to the code review guidelines -
Conforms to the Go guidelines -
Security reports checked/validated by reviewer
Edited by Josiah Ritchie