fix: run Docker container as non-root user to reduce blast radius by LuNHans · Pull Request #19 · perforce/p4mcp-server

LuNHans · 2026-03-20T10:01:08Z

Add non-root mcpuser and switch to it via USER directive
Set P4TICKETS env var to /home/mcpuser/.p4tickets
Update README mount paths from /root to /home/mcpuser
Ensure /app/logs is writable by mcpuser

- Add non-root mcpuser and switch to it via USER directive - Set P4TICKETS env var to /home/mcpuser/.p4tickets - Update README mount paths from /root to /home/mcpuser - Ensure /app/logs is writable by mcpuser

LH-EA and others added 2 commits March 20, 2026 10:53

fix: run Docker container as non-root user to reduce blast radius

b3df08f

- Add non-root mcpuser and switch to it via USER directive - Set P4TICKETS env var to /home/mcpuser/.p4tickets - Update README mount paths from /root to /home/mcpuser - Ensure /app/logs is writable by mcpuser

Merge branch 'main' into feature/dockerfile-non-root

7dc102e

hjain-perforce merged commit c54422e into perforce:main Apr 16, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix: run Docker container as non-root user to reduce blast radius#19

fix: run Docker container as non-root user to reduce blast radius#19
hjain-perforce merged 2 commits intoperforce:mainfrom
LuNHans:feature/dockerfile-non-root

LuNHans commented Mar 20, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

LuNHans commented Mar 20, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants