Context
The highest threat is that an attacker gains access and sends custom javascript to the clients in order to read secrets. In order to mitigate the risk, the dockerfile should be hardened so that the appuser is not able to write files that are served by the webserver.
Alternatives
none
Has the feature been requested before?
no
If the feature request is approved, would you be willing to submit a PR?
Yes
Context
The highest threat is that an attacker gains access and sends custom javascript to the clients in order to read secrets. In order to mitigate the risk, the dockerfile should be hardened so that the appuser is not able to write files that are served by the webserver.
Alternatives
none
Has the feature been requested before?
no
If the feature request is approved, would you be willing to submit a PR?
Yes