From 4a4c9b6abfe841fe5ac2121e6dbafc1f8eb94900 Mon Sep 17 00:00:00 2001
From: Till! <till@users.noreply.github.com>
Date: Sat, 2 Sep 2023 12:45:07 +0200
Subject: [PATCH] Fix: USER (runAsNonRoot)

Supply the numeric uid/gid of the user/group created early in the Dockerfile. This is to ensure that (on k8s) runAsNonRoot works as expected because the username could indeed map to root (uid 0).
---
 Dockerfile-dind-rootless.template | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Dockerfile-dind-rootless.template b/Dockerfile-dind-rootless.template
index 3d9c76782..2999277ed 100644
--- a/Dockerfile-dind-rootless.template
+++ b/Dockerfile-dind-rootless.template
@@ -43,4 +43,4 @@ RUN set -eux; \
 	mkdir -p /home/rootless/.local/share/docker; \
 	chown -R rootless:rootless /home/rootless/.local/share/docker
 VOLUME /home/rootless/.local/share/docker
-USER rootless
+USER 1000:1000