Additional hardening for Docker-Compose (#734)

This commit is contained in:
Tommy 2023-03-28 10:20:07 -04:00 committed by GitHub
parent 23f4c6114c
commit 78cb405acd
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 12 additions and 0 deletions

View File

@ -17,6 +17,12 @@ services:
interval: 30s interval: 30s
timeout: 5s timeout: 5s
retries: 2 retries: 2
user: "998:998"
read_only: true
security_opt:
- no-new-privileges:true
cap_drop:
- ALL
nitter-redis: nitter-redis:
image: redis:6-alpine image: redis:6-alpine
@ -30,6 +36,12 @@ services:
interval: 30s interval: 30s
timeout: 5s timeout: 5s
retries: 2 retries: 2
user: "999:1000"
read_only: true
security_opt:
- no-new-privileges:true
cap_drop:
- ALL
volumes: volumes:
nitter-redis: nitter-redis: