Entrypoint Of The Container Must Be Run With A User With A High ID

Ensure entrypoint of the container runs with a user with a high ID.

Policy Details

Policy Subtype
Build
Severity
Medium
Template Type
Kubernetes

Build Rules

Entrypoint of the container must be run with a user with a high ID.
JSON Query:
$.spec.template.spec.containers[*].securityContext.runAsUser < 9999
Recommendation:
Recommended solution to ensure that entrypoint of the container runs with a user with a high ID.
It is recommended that entrypoint of the container runs with a user with a high ID. Please make sure "runAsUser" value is greater than 9999.
For example:
"spec": { "containers": [ { "name": "friendly-container", "image": "alpine:3.4", "command": [ "/bin/echo", "hello", "world" ], "securityContext": { "runAsUser": 10000 } } ] }

Recommended For You