From 4ac782e5a41e09581523c0c094e1bdfa80eb2bce Mon Sep 17 00:00:00 2001
From: "scott.eppler" <scott.eppler@coda.global>
Date: Tue, 8 Oct 2019 14:19:30 -0500
Subject: [PATCH] Update WebhookStash sample-function to run as non-root user

Signed-off-by: scott.eppler <scott.eppler@coda.global>
---
 sample-functions/WebhookStash/Dockerfile | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/sample-functions/WebhookStash/Dockerfile b/sample-functions/WebhookStash/Dockerfile
index 4f7ef758..8ced9b7a 100644
--- a/sample-functions/WebhookStash/Dockerfile
+++ b/sample-functions/WebhookStash/Dockerfile
@@ -20,4 +20,7 @@ RUN chmod +x /usr/bin/fwatchdog
 COPY --from=builder /go/bin/WebhookStash  /usr/bin/WebhookStash
 ENV fprocess "/usr/bin/WebhookStash"
 
+RUN addgroup -g 1000 -S app && adduser -u 1000 -S app -G app
+USER 1000
+
 CMD ["/usr/bin/fwatchdog"]
-- 
GitLab