From 63c6c75073363119100c13c0d36b4decebc8e769 Mon Sep 17 00:00:00 2001
From: Shrikant Sharat Kandula <shrikant@appsmith.com>
Date: Wed, 27 Apr 2022 12:57:57 +0530
Subject: [PATCH] Disable uid/gid bits for fat container (#13277)

---
 Dockerfile | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/Dockerfile b/Dockerfile
index 8a7196860d..ce92e1505f 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -88,6 +88,9 @@ RUN chmod 0644 /etc/cron.d/*
 
 RUN chmod +x entrypoint.sh renew-certificate.sh
 
+# Disable setuid/setgid bits for the files inside container.
+RUN find / \( -path /proc -prune \) -o \( \( -perm -2000 -o -perm -4000 \) -print -exec chmod -s '{}' + \) || true
+
 # Update path to load appsmith utils tool as default
 ENV PATH /opt/appsmith/utils/node_modules/.bin:$PATH