From f598dd5a01a8d032e9d10c5ac16c10b332ea6599 Mon Sep 17 00:00:00 2001
From: virgo-o <virgoj@protonmail.com>
Date: Wed, 7 May 2025 17:25:16 +0200
Subject: [PATCH] rootless docker container

Signed-off-by: virgo-o <virgoj@protonmail.com>
---
 Dockerfile | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/Dockerfile b/Dockerfile
index e50843be5..8ec6c6ccc 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -5,6 +5,9 @@ ARG VERSION
 ARG CDX_PATH=/opt/cyclonedx-py
 ARG CDX_VENV=${CDX_PATH}/venv
 
+RUN addgroup --system --gid 1000 cyclonedx \
+    && adduser --system --shell /bin/bash --uid 1000 --ingroup cyclonedx cyclonedx
+
 RUN mkdir -p "${CDX_PATH}"
 RUN python -m venv --without-pip "${CDX_VENV}"
 ENV VIRTUAL_ENV=${CDX_VENV}
@@ -19,4 +22,5 @@ RUN pip --python "${CDX_VENV}" \
    "cyclonedx-bom==${VERSION}" --find-links "file://${CDX_PATH}/dist"
 RUN rm -rf ${CDX_PATH}/dist
 
+USER cyclonedx
 ENTRYPOINT ["cyclonedx-py"]