From 14b2a923f7eba8b10c369ea21d96513fe2bd4d57 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nikola=20Forr=C3=B3?= <nikola@mraveniste.cc>
Date: Mon, 14 May 2018 14:05:37 +0200
Subject: [PATCH] Run bot in a container as unprivileged user

---
 Dockerfile | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/Dockerfile b/Dockerfile
index 882a15e..53a433e 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -6,4 +6,8 @@ RUN touch settings.cfg
 
 RUN pip install --no-cache-dir --requirement requirements.txt
 
+RUN addgroup -g 9999 lilia
+
+USER nobody:lilia
+
 ENTRYPOINT ["python", "bot.py"]