We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
1 parent 8ac9021 commit 7984ed7Copy full SHA for 7984ed7
dogfood/Dockerfile
@@ -313,9 +313,11 @@ COPY --from=rust-utils /tmp/bin /usr/local/bin
313
COPY --from=proto /tmp/bin /usr/local/bin
314
315
# Configure Nix without sandboxing - https://github.com/NixOS/nix/issues/2636#issuecomment-455302745
316
-RUN mkdir -p /nix /etc/nix && \
317
- chmod a+rwx /nix && \
318
- echo 'sandbox = false' > /etc/nix/nix.conf
+RUN addgroup --system nixbld \
+ && adduser coder nixbld \
+ && for i in $(seq 1 30); do useradd -ms /bin/bash nixbld$i && adduser nixbld$i nixbld; done \
319
+ && mkdir -m 0755 /nix && chown coder /nix \
320
+ && mkdir -p /etc/nix && echo 'sandbox = false' > /etc/nix/nix.conf
321
322
USER coder
323
0 commit comments