From a3c97f6923f9eb544c457bbae306338040073b68 Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Mon, 1 Aug 2022 16:31:54 -0500
Subject: [PATCH] run as uid 1000

---
 ci/podTemplate.yaml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/ci/podTemplate.yaml b/ci/podTemplate.yaml
index 07f5903..154b1d7 100644
--- a/ci/podTemplate.yaml
+++ b/ci/podTemplate.yaml
@@ -7,6 +7,9 @@ spec:
     command:
     - sleep
     - infinity
+    securityContext:
+      readOnlyRootFilesystem: true
+      runAsUser: 1000
   - name: node
     image: docker.io/node:16-bullseye-slim
     command:
@@ -23,3 +26,4 @@ spec:
         cpu: 1.0
     securityContext:
       readOnlyRootFilesystem: true
+      runAsUser: 1000