Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make Brownie to run in a less privileged environment - Executes only with ROOT today #1690

Open
karmops opened this issue May 18, 2023 · 1 comment
Open

Make Brownie to run in a less privileged environment - Executes only with ROOT today #1690

karmops opened this issue May 18, 2023 · 1 comment

Comments

@karmops
Copy link

karmops commented May 18, 2023

Overview

Run an application that uses brownie in k8s using a security context

securityContext:
  allowPrivilegeEscalation: false
  runAsUser: 10001
  runAsGroup: 10001
  capabilities:
    drop: ["ALL"]

Specification

securityContext:
  allowPrivilegeEscalation: false
  runAsUser: 10001
  runAsGroup: 10001
  capabilities:
    drop: ["ALL"]

Result

image

Brownie only executes with the root user
image

seems cache.db and topics.json are created during the Brownie initialization.
@andresvsm1
Copy link

does anyone have an update over this topic?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@andresvsm1 @karmops