From 69cff0b9c50151caeedebfd7a62ea40e6be796ab Mon Sep 17 00:00:00 2001
From: Andrew Block <andy.block@gmail.com>
Date: Sat, 20 Sep 2025 12:24:36 -0500
Subject: [PATCH] Added non-privileged image user

Signed-off-by: Andrew Block <andy.block@gmail.com>
---
 Dockerfile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/Dockerfile b/Dockerfile
index 795baf6c..bb8d7e4c 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -8,6 +8,7 @@ RUN make build
 FROM registry.access.redhat.com/ubi9/ubi-minimal:latest
 WORKDIR /app
 COPY --from=builder /app/kubernetes-mcp-server /app/kubernetes-mcp-server
+USER 65532:65532
 ENTRYPOINT ["/app/kubernetes-mcp-server", "--port", "8080"]
 
 EXPOSE 8080