package-analysis icon indicating copy to clipboard operation
package-analysis copied to clipboard
verified publisher icon ossf

Run analysis image as non-root user

Open maxfisher-g opened this issue 3 years ago • 1 comments

Most of the time, developers install and run packages as non-root users. Currently, commands inside the analysis container run as root which is easy to set up but not as realistic. It would be ideal to have things running as a non-root user, but with (passwordless) sudo access (see #393)

maxfisher-g avatar Oct 12 '22 00:10 maxfisher-g

This may be blocked by https://github.com/google/gvisor/issues/7449

maxfisher-g avatar Oct 12 '22 14:10 maxfisher-g

Previously there was an upstream issue with gVisor which blocked this, but it's been fixed as of https://github.com/google/gvisor/commit/8e4cb261486ad84bc5657b1cee0288018f693d01

maxfisher-g avatar Nov 14 '22 00:11 maxfisher-g