From 95003803eb0beb7ce838e1130ef71f5c9ffb692a Mon Sep 17 00:00:00 2001
From: Akbar Rahman <hi@alv.cx>
Date: Tue, 2 Jan 2024 18:28:35 +0000
Subject: [PATCH] run as non priveleged user in docker

---
 Dockerfile | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/Dockerfile b/Dockerfile
index b929809..213a21a 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -23,6 +23,9 @@ RUN apt-get update \
 COPY requirements.txt ./
 RUN pip install --no-cache-dir -r requirements.txt
 
+RUN useradd -Ms /bin/nologin user
+USER user
+
 COPY . .
 
 CMD [ "python3", "-u", "gronk.py", "--output-dir", "./web", "./notes" ]