cf-gitbot
commented
4 years ago We have created an issue in Pivotal Tracker to manage this:
https://www.pivotaltracker.com/story/show/175128565
The labels on this github issue will be updated when the story is started.
see https://github.com/cloudfoundry/cf-for-k8s/issues/483#issue-711800977 for context about what all was broken by having a hardcoded UID. In short, containers that were built to run with non-2000 UIDs will not run. runAsNonRoot should prevent users from running as UID 0, giving them root on the host.