[TT-17009] make Docker images backward compatible with runAsUser: 1000#8104
Conversation
- Remove --chown=65532:65532 from COPY for non-FIPS builds - Add chmod -R a+rX so files are world-readable regardless of uid - FIPS/DHI builds pass NONROOT_CHOWN=true for proper nonroot ownership Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
|
API Changes no api changes detected |
|
This PR fixes a backward compatibility issue in the Docker images, allowing them to run with user IDs other than the default The change removes the hardcoded To maintain stricter security for FIPS builds, a new build argument Files Changed Analysis
Architecture & Impact Assessment
graph TD |
\n\n
Architecture Issues (1)
Performance Issues (1)
✅ Quality Check PassedNo quality issues found – changes LGTM. Powered by Visor from Probelabs Last updated: 2026-04-20T16:53:08.309Z | Triggered by: pr_opened | Commit: d383920 💡 TIP: You can chat with Visor using |
🚨 Jira Linter FailedCommit: The Jira linter failed to validate your PR. Please check the error details below: 🔍 Click to view error detailsNext Steps
This comment will be automatically deleted once the linter passes. |
Summary
--chown=65532:65532from non-FIPS Dockerfile builds to restore backward compatibility with helm charts usingrunAsUser: 1000chmod -R a+rXNONROOT_CHOWNbuild argTest plan
runAsUser: 1000(old helm default)runAsUser: 65532🤖 Generated with Claude Code