From 55b6e58d6e6d1f57f311f81be236ade6166ee768 Mon Sep 17 00:00:00 2001
From: Manohar Reddy <manohar@simplyblock.io>
Date: Wed, 23 Jul 2025 22:54:20 +0530
Subject: [PATCH] run docker container as a non root user

---
 docker/Dockerfile | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/docker/Dockerfile b/docker/Dockerfile
index ce1a83ae1..a01701119 100644
--- a/docker/Dockerfile
+++ b/docker/Dockerfile
@@ -1,6 +1,9 @@
 # syntax=docker/dockerfile:1
 FROM simplyblock/simplyblock:base_image
 
+# Create a non-root user
+RUN addgroup --system appgroup && adduser --system --ingroup appgroup appuser
+
 WORKDIR /app
 
 COPY requirements.txt .
@@ -9,4 +12,8 @@ RUN pip3 install -r requirements.txt
 
 COPY . /app
 
-RUN python setup.py install
+# Fix ownership to non-root user
+RUN chown -R appuser:appgroup /app && \
+    python setup.py install
+
+USER appuser