Run as root

sapcc · Nov 19, 2024 · 56d38a3 · 56d38a3
1 parent 8580c04
commit 56d38a3
Show file tree

Hide file tree

Showing 3 changed files with 3 additions and 6 deletions.
diff --git a/Dockerfile b/Dockerfile
@@ -10,9 +10,6 @@ RUN make -C /src install PREFIX=/pkg GOTOOLCHAIN=local GO_BUILDFLAGS='-mod vendo
 
 FROM alpine:3.20
 
-RUN addgroup -g 4200 appgroup \
-  && adduser -h /home/appuser -s /sbin/nologin -G appgroup -D -u 4200 appuser
-
 # upgrade all installed packages to fix potential CVEs in advance
 # also remove apk package manager to hopefully remove dependency on OpenSSL 🤞
 RUN apk upgrade --no-cache --no-progress \
@@ -31,6 +28,5 @@ LABEL source_repository="https://github.com/sapcc/kubernetes-oomkill-exporter" \
   org.opencontainers.image.revision=${BININFO_COMMIT_HASH} \
   org.opencontainers.image.version=${BININFO_VERSION}
 
-USER 4200:4200
-WORKDIR /home/appuser
+WORKDIR /
 ENTRYPOINT [ "/usr/bin/kubernetes-oomkill-exporter" ]
diff --git a/Makefile.maker.yaml b/Makefile.maker.yaml
@@ -7,6 +7,7 @@ binaries:
     installTo:   bin/
 dockerfile:
   enabled: true
+  runAsRoot: true
 golang:
   setGoModVersion: true
   enableVendoring: true

diff --git a/go.mod b/go.mod
@@ -1,6 +1,6 @@
 module github.com/sapcc/kubernetes-oomkill-exporter
 
-go 1.23.1
+go 1.23
 
 toolchain go1.23.3