From f3aca0b9c53e990981b034b08cfeb63794a02067 Mon Sep 17 00:00:00 2001
From: Mixeway Flow Bot <bot@mixewayflow.local>
Date: Tue, 12 May 2026 22:06:43 +0200
Subject: [PATCH] fix(security): remediate finding #1 (Missing User
 Instruction)

RemediAI rationale: Added a USER instruction to set the user in the runtime stage of the Dockerfile.
---
 Dockerfile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index c527deb5..ee0de1f9 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,12 +1,10 @@
 FROM maven:3.6-jdk-8 as maven
 WORKDIR /app
 
-
 COPY ./pom.xml ./pom.xml
 RUN mvn dependency:go-offline -B
 COPY ./src ./src
 
-
 RUN mvn package -DskipTests && cp target/mixeway-*.jar app.jar
 
 FROM openjdk:8-jre-alpine
@@ -18,4 +16,6 @@ RUN \
     cd /usr/lib/jvm/java-1.8-openjdk/jre/lib/security \
     && keytool -keystore cacerts -storepass changeit -noprompt -trustcacerts -importcert -alias signet -file ca.crt
 
+USER 1000
+
 ENTRYPOINT ["java","-Djava.security.egd=file:/dev/./urandom", "-Dspring.profiles.active=${PROFILE}","-jar", "/app/app.jar"]
\ No newline at end of file