FIles that are dropped might be owned to uid 0. Besides other consequences this enforces tools that integrate extraction (e.g. FACT) to have some root privileges to process them. One could add some parameter that is passed to docker at run time that contains the uid of the spawning user (e.g. 1000, 1001 ..).
WIth this, the extractor could change ownership of files to this to remove the necessity for privileged processing.
FIles that are dropped might be owned to
uid 0. Besides other consequences this enforces tools that integrate extraction (e.g. FACT) to have some root privileges to process them. One could add some parameter that is passed to docker at run time that contains the uid of the spawning user (e.g. 1000, 1001 ..). WIth this, the extractor could change ownership of files to this to remove the necessity for privileged processing.