From 4596ad919a31f75c0967256633789d68707d13bd Mon Sep 17 00:00:00 2001
From: Luke Kingland <luke@lukekingland.com>
Date: Thu, 10 Aug 2023 11:04:50 +0900
Subject: [PATCH] feat: run host-built containers as non-root

---
 pkg/oci/containerize.go | 1 +
 1 file changed, 1 insertion(+)

diff --git a/pkg/oci/containerize.go b/pkg/oci/containerize.go
index abe6f13aab..6e5f43c77f 100644
--- a/pkg/oci/containerize.go
+++ b/pkg/oci/containerize.go
@@ -392,6 +392,7 @@ func newConfig(cfg *buildConfig, p v1.Platform, layers ...v1.Layer) (desc v1.Des
 			Cmd:          []string{"/func/f"}, // NOTE: Using Cmd because Entrypoint can not be overridden
 			WorkingDir:   "/func/",
 			StopSignal:   "SIGKILL",
+			User:         "1000",
 			Volumes:      volumes,
 			// Labels
 			// History