feat: use nginx-unprivileged images

coreruleset / modsecurity-crs-docker

Official ModSecurity Docker + Core Rule Set (CRS) images

https://coreruleset.org

Apache License 2.0

241 stars 63 forks source link

Closed theseion closed 5 months ago

theseion commented 5 months ago

Use unprivileged images and always run images as non-root.

Fixes #55

fzipi commented 5 months ago

QQ: does this look like a breaking change? 🤔

theseion commented 5 months ago

Not necessarily. There will probably be some for people using mounts / overrides, or for those using one of our images as a basis.

theseion commented 5 months ago

I just ran the CRS test suite using these images and didn't spot any change in behaviour.