[RAPTOR-12499] SemGrep detected root user in dronin environments

custom_model_runner/CHANGELOG.md

@@ -4,6 +4,11 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+#### [1.16.14] - in progress
+
+##### Changed
+- Non-root user is configured for drop-in environments
+
 #### [1.16.13] - 2025-05-12
 ##### Added 
 - Request ID for logging messages

custom_model_runner/datarobot_drum/drum/description.py

@@ -4,6 +4,6 @@
 This is proprietary source code of DataRobot, Inc. and its affiliates.
 Released under the terms of DataRobot Tool and Utility Agreement.
 """
-version = "1.16.13"
+version = "1.16.14"
 __version__ = version
 project_name = "datarobot-drum"

example_dropin_environments/julia_mlj/Dockerfile

@@ -24,4 +24,9 @@ ENV WITH_ERROR_SERVER=1
 #Uncomment the following line to switch to production mode
 #ENV PRODUCTION=1 MAX_WORKERS=4 SHOW_STACKTRACE=1
 
+RUN chmod -R 777 $HOME
+
+# Security scanners require non-root user to be explicitly specified for the Docker image
+USER nobody
+
 ENTRYPOINT ["/opt/code/start_server.sh"]

example_dropin_environments/python311_genai-gpu/Dockerfile

@@ -25,4 +25,8 @@ COPY ./*.sh ${CODE_DIR}/
 
 ENV WITH_ERROR_SERVER=1
 
+RUN chmod -R 777 $HOME
+
+USER nobody
+
 ENTRYPOINT ["/opt/code/start_server.sh"]

example_dropin_environments/python39_genai/Dockerfile

@@ -27,4 +27,8 @@ ENV WITH_ERROR_SERVER=1
 # Uncomment the following line to switch from Flask to production mode
 #ENV PRODUCTION=1 MAX_WORKERS=4 SHOW_STACKTRACE=1
 
+RUN chmod -R 777 $HOME
+# Security scanners require non-root user to be explicitly specified for the Docker image
+USER nobody
+
 ENTRYPOINT ["/opt/code/start_server.sh"]

harness_scripts/functional_general/general_tests_entrypoint.sh

@@ -17,14 +17,15 @@ cp -r custom_model_runner/ $tmp_py3_sklearn_env_dir
 
 constants_file="tests/constants.py"
 image_name=$(grep -oP '^DOCKER_PYTHON_SKLEARN\s*=\s*"\K[^"]+' "$constants_file")
+image_name="python3_sklearn_test_env"
 [ -z $image_name ] && echo "DOCKER_PYTHON_SKLEARN is not set in $constants_file" && exit 1
 
 pushd $tmp_py3_sklearn_env_dir
 # remove DRUM from requirements file to be able to install it from source
 sed -i "s/^datarobot-drum.*//" requirements.txt
 # Update the Dockerfile to install the custom model runner
-echo -e "RUN pip uninstall -y datarobot-drum || true\nCOPY ./custom_model_runner /tmp/custom_model_runner\nRUN pip install /tmp/custom_model_runner" >> Dockerfile
-docker build -t $image_name .
+echo -e "RUN pip uninstall -y datarobot-drum || true\nCOPY ./custom_model_runner /tmp/custom_model_runner\nRUN pip install /tmp/custom_model_runner" >> Dockerfile.tests
+docker build -t $image_name -f Dockerfile.tests .
 popd
 
 docker images

public_dropin_environments/java_codegen/Dockerfile

@@ -5,15 +5,23 @@ FROM ${BASE_ROOT_IMAGE} AS build
 
 USER root
 
-# The JDK (not just JRE) is required because Py4J calls a Java method (o0.configure) that tries to execute 'javac'.
 RUN apk add --no-cache openjdk-11
 
+ENV VIRTUAL_ENV=/opt/venv
+
+RUN python -m venv ${VIRTUAL_ENV} && \
+    ${VIRTUAL_ENV}/bin/python -m ensurepip --default-pip --upgrade
+
+COPY requirements.txt requirements.txt
+RUN ${VIRTUAL_ENV}/bin/python -m pip install --no-cache-dir -r requirements.txt && \
+    find ${VIRTUAL_ENV} -type d -name '__pycache__' -exec rm -rf {} +
+
+# The JDK (not just JRE) is required because Py4J calls a Java method (o0.configure) that tries to execute 'javac'.
+
 # This is a private production chain-guard image that is stored in DataRobot's private registry.
 # Replace it with your own production chain-gaurd image if you build your own.
 FROM datarobotdev/mirror_chainguard_datarobot.com_python-fips:3.11
 
-USER root
-
 # Copy the JRE from the development stage
 COPY --from=build /usr/lib/jvm/java-11-openjdk /usr/lib/jvm/java-11-openjdk
 
@@ -32,25 +40,13 @@ COPY --from=build /bin/mkdir /bin/mkdir
 # Required for custom-models to install dependencies
 COPY --from=build /usr/bin/pip /usr/bin/pip
 
-# Cleanup '__pycache__' directories. It solves an AsymmetricPrivateKey scanning error.
-COPY --from=build /usr/bin/rm /usr/bin/rm
-COPY --from=build /usr/bin/find /usr/bin/find
 
 # Just for convenience
 COPY --from=build /bin/ls /bin/ls
 
-
-COPY requirements.txt requirements.txt
-
 ENV VIRTUAL_ENV=/opt/venv
-
-RUN sh -c "python -m venv ${VIRTUAL_ENV} && \
-    . ${VIRTUAL_ENV}/bin/activate && \
-    python -m ensurepip --default-pip && \
-    python -m pip install --upgrade pip && \
-    python -m pip install --no-cache-dir -r requirements.txt && \
-    find ${VIRTUAL_ENV} -type d -name '__pycache__' -exec rm -rf {} + && \
-    rm -rf /usr/bin/rm /usr/bin/find"
+# Copy preinstalled virtualenv
+COPY --from=build --chown=nonroot ${VIRTUAL_ENV} ${VIRTUAL_ENV}
 
 ENV JAVA_HOME=/usr/lib/jvm/java-11-openjdk
 ENV PATH=${VIRTUAL_ENV}/bin:${JAVA_HOME}/bin:${PATH}
@@ -68,4 +64,9 @@ ENV WITH_ERROR_SERVER=1 \
 COPY ./*.sh ${CODE_DIR}/
 WORKDIR ${CODE_DIR}
 
+USER root
+RUN chmod -R 777 $HOME
+# Security scanners require non-root user to be explicitly specified for the Docker image
+USER nonroot
+
 ENTRYPOINT ["sh", "-c", "exec ${CODE_DIR}/start_server.sh \"$@\"", "--"]

public_dropin_environments/python311/Dockerfile

@@ -3,12 +3,21 @@
 ARG BASE_ROOT_IMAGE=datarobotdev/mirror_chainguard_datarobot.com_python-fips:3.11-dev
 FROM ${BASE_ROOT_IMAGE} AS build
 
+USER root
+
+ENV VIRTUAL_ENV=/opt/venv
+
+RUN python -m venv ${VIRTUAL_ENV} && \
+    ${VIRTUAL_ENV}/bin/python -m ensurepip --default-pip --upgrade
+
+COPY requirements.txt requirements.txt
+RUN ${VIRTUAL_ENV}/bin/python -m pip install --no-cache-dir -r requirements.txt && \
+    find ${VIRTUAL_ENV} -type d -name '__pycache__' -exec rm -rf {} +
+
 # This is a private production chain-guard image that is stored in DataRobot's private registry.
 # Replace it with your own production chain-gaurd image if you build your own.
 FROM datarobotdev/mirror_chainguard_datarobot.com_python-fips:3.11
 
-USER root
-
 # Required to run the entrypoint script
 COPY --from=build /bin/sh /bin/sh
 
@@ -24,24 +33,12 @@ COPY --from=build /bin/mkdir /bin/mkdir
 # Required for custom-models to install dependencies
 COPY --from=build /usr/bin/pip /usr/bin/pip
 
-# Cleanup '__pycache__' directories. It solves an AsymmetricPrivateKey scanning error.
-COPY --from=build /usr/bin/rm /usr/bin/rm
-COPY --from=build /usr/bin/find /usr/bin/find
-
 # Just for convenience
 COPY --from=build /bin/ls /bin/ls
 
-COPY requirements.txt requirements.txt
-
 ENV VIRTUAL_ENV=/opt/venv
-
-RUN sh -c "python -m venv ${VIRTUAL_ENV} && \
-    . ${VIRTUAL_ENV}/bin/activate && \
-    python -m ensurepip --default-pip && \
-    python -m pip install --upgrade pip && \
-    python -m pip install --no-cache-dir -r requirements.txt && \
-    find ${VIRTUAL_ENV} -type d -name '__pycache__' -exec rm -rf {} + && \
-    rm -rf /usr/bin/rm /usr/bin/find"
+# Copy preinstalled virtualenv
+COPY --from=build --chown=nonroot ${VIRTUAL_ENV} ${VIRTUAL_ENV}
 
 ENV PATH=${VIRTUAL_ENV}/bin:${PATH}
 ENV HOME=/opt
@@ -58,4 +55,9 @@ ENV WITH_ERROR_SERVER=1 \
 COPY ./*.sh ${CODE_DIR}/
 WORKDIR ${CODE_DIR}
 
+USER root
+RUN chmod -R 777 $HOME
+# Security scanners require non-root user to be explicitly specified for the Docker image
+USER nonroot
+
 ENTRYPOINT ["sh", "-c", "exec ${CODE_DIR}/start_server.sh \"$@\"", "--"]

public_dropin_environments/python311_genai/Dockerfile

@@ -3,12 +3,21 @@
 ARG BASE_ROOT_IMAGE=datarobotdev/mirror_chainguard_datarobot.com_python-fips:3.11-dev
 FROM ${BASE_ROOT_IMAGE} AS build
 
+USER root
+
+ENV VIRTUAL_ENV=/opt/venv
+
+RUN python -m venv ${VIRTUAL_ENV} && \
+    ${VIRTUAL_ENV}/bin/python -m ensurepip --default-pip --upgrade
+
+COPY requirements.txt requirements.txt
+RUN ${VIRTUAL_ENV}/bin/python -m pip install --no-cache-dir -r requirements.txt && \
+    find ${VIRTUAL_ENV} -type d -name '__pycache__' -exec rm -rf {} +
+
 # This is a private production chain-guard image that is stored in DataRobot's private registry.
 # Replace it with your own production chain-gaurd image if you build your own.
 FROM datarobotdev/mirror_chainguard_datarobot.com_python-fips:3.11
 
-USER root
-
 # Required to run the entrypoint script
 COPY --from=build /bin/sh /bin/sh
 
@@ -24,24 +33,12 @@ COPY --from=build /bin/mkdir /bin/mkdir
 # Required for custom-models to install dependencies
 COPY --from=build /usr/bin/pip /usr/bin/pip
 
-# Cleanup '__pycache__' directories. It solves an AsymmetricPrivateKey scanning error.
-COPY --from=build /usr/bin/rm /usr/bin/rm
-COPY --from=build /usr/bin/find /usr/bin/find
-
 # Just for convenience
 COPY --from=build /bin/ls /bin/ls
 
-COPY requirements.txt requirements.txt
-
 ENV VIRTUAL_ENV=/opt/venv
-
-RUN sh -c "python -m venv ${VIRTUAL_ENV} && \
-    . ${VIRTUAL_ENV}/bin/activate && \
-    python -m ensurepip --default-pip && \
-    python -m pip install --upgrade pip && \
-    python -m pip install --no-cache-dir -r requirements.txt && \
-    find ${VIRTUAL_ENV} -type d -name '__pycache__' -exec rm -rf {} + && \
-    rm -rf /usr/bin/rm /usr/bin/find"
+# Copy preinstalled virtualenv
+COPY --from=build --chown=nonroot ${VIRTUAL_ENV} ${VIRTUAL_ENV}
 
 ENV PATH=${VIRTUAL_ENV}/bin:${PATH}
 ENV HOME=/opt
@@ -58,4 +55,9 @@ ENV WITH_ERROR_SERVER=1 \
 COPY ./*.sh ${CODE_DIR}/
 WORKDIR ${CODE_DIR}
 
+USER root
+RUN chmod -R 777 $HOME
+# Security scanners require non-root user to be explicitly specified for the Docker image
+USER nonroot
+
 ENTRYPOINT ["sh", "-c", "exec ${CODE_DIR}/start_server.sh \"$@\"", "--"]

public_dropin_environments/python3_keras/Dockerfile

@@ -3,12 +3,21 @@
 ARG BASE_ROOT_IMAGE=datarobotdev/mirror_chainguard_datarobot.com_python-fips:3.11-dev
 FROM ${BASE_ROOT_IMAGE} AS build
 
+USER root
+
+ENV VIRTUAL_ENV=/opt/venv
+
+RUN python -m venv ${VIRTUAL_ENV} && \
+    ${VIRTUAL_ENV}/bin/python -m ensurepip --default-pip --upgrade
+
+COPY requirements.txt requirements.txt
+RUN ${VIRTUAL_ENV}/bin/python -m pip install --no-cache-dir -r requirements.txt && \
+    find ${VIRTUAL_ENV} -type d -name '__pycache__' -exec rm -rf {} +
+
 # This is a private production chain-guard image that is stored in DataRobot's private registry.
 # Replace it with your own production chain-gaurd image if you build your own.
 FROM datarobotdev/mirror_chainguard_datarobot.com_python-fips:3.11
 
-USER root
-
 # Required to run the entrypoint script
 COPY --from=build /bin/sh /bin/sh
 
@@ -24,24 +33,13 @@ COPY --from=build /bin/mkdir /bin/mkdir
 # Required for custom-models to install dependencies
 COPY --from=build /usr/bin/pip /usr/bin/pip
 
-# Cleanup '__pycache__' directories. It solves an AsymmetricPrivateKey scanning error.
-COPY --from=build /usr/bin/rm /usr/bin/rm
-COPY --from=build /usr/bin/find /usr/bin/find
-
 # Just for convenience
 COPY --from=build /bin/ls /bin/ls
 
-COPY requirements.txt requirements.txt
-
 ENV VIRTUAL_ENV=/opt/venv
 
-RUN sh -c "python -m venv ${VIRTUAL_ENV} && \
-    . ${VIRTUAL_ENV}/bin/activate && \
-    python -m ensurepip --default-pip && \
-    python -m pip install --upgrade pip && \
-    python -m pip install --no-cache-dir -r requirements.txt && \
-    find ${VIRTUAL_ENV} -type d -name '__pycache__' -exec rm -rf {} + && \
-    rm -rf /usr/bin/rm /usr/bin/find"
+# Copy preinstalled virtualenv
+COPY --from=build --chown=nonroot ${VIRTUAL_ENV} ${VIRTUAL_ENV}
 
 ENV PATH=${VIRTUAL_ENV}/bin:${PATH}
 ENV HOME=/opt
@@ -57,4 +55,9 @@ ENV WITH_ERROR_SERVER=1 \
 COPY ./*.sh ${CODE_DIR}/
 WORKDIR ${CODE_DIR}
 
+USER root
+RUN chmod -R 777 $HOME
+# Security scanners require non-root user to be explicitly specified for the Docker image
+USER nonroot
+
 ENTRYPOINT ["sh", "-c", "exec ${CODE_DIR}/start_server.sh \"$@\"", "--"]

public_dropin_environments/python3_onnx/Dockerfile

@@ -3,12 +3,21 @@
 ARG BASE_ROOT_IMAGE=datarobotdev/mirror_chainguard_datarobot.com_python-fips:3.11-dev
 FROM ${BASE_ROOT_IMAGE} AS build
 
+USER root
+
+ENV VIRTUAL_ENV=/opt/venv
+
+RUN python -m venv ${VIRTUAL_ENV} && \
+    ${VIRTUAL_ENV}/bin/python -m ensurepip --default-pip --upgrade
+
+COPY requirements.txt requirements.txt
+RUN ${VIRTUAL_ENV}/bin/python -m pip install --no-cache-dir -r requirements.txt && \
+    find ${VIRTUAL_ENV} -type d -name '__pycache__' -exec rm -rf {} +
+
 # This is a private production chain-guard image that is stored in DataRobot's private registry.
 # Replace it with your own production chain-gaurd image if you build your own.
 FROM datarobotdev/mirror_chainguard_datarobot.com_python-fips:3.11
 
-USER root
-
 # Required to run the entrypoint script
 COPY --from=build /bin/sh /bin/sh
 
@@ -24,24 +33,15 @@ COPY --from=build /bin/mkdir /bin/mkdir
 # Required for custom-models to install dependencies
 COPY --from=build /usr/bin/pip /usr/bin/pip
 
-# Cleanup '__pycache__' directories. It solves an AsymmetricPrivateKey scanning error.
-COPY --from=build /usr/bin/rm /usr/bin/rm
-COPY --from=build /usr/bin/find /usr/bin/find
-
 # Just for convenience
 COPY --from=build /bin/ls /bin/ls
 
 COPY requirements.txt requirements.txt
 
 ENV VIRTUAL_ENV=/opt/venv
 
-RUN sh -c "python -m venv ${VIRTUAL_ENV} && \
-    . ${VIRTUAL_ENV}/bin/activate && \
-    python -m ensurepip --default-pip && \
-    python -m pip install --upgrade pip && \
-    python -m pip install --no-cache-dir -r requirements.txt && \
-    find ${VIRTUAL_ENV} -type d -name '__pycache__' -exec rm -rf {} + && \
-    rm -rf /usr/bin/rm /usr/bin/find"
+# Copy preinstalled virtualenv
+COPY --from=build --chown=nonroot ${VIRTUAL_ENV} ${VIRTUAL_ENV}
 
 ENV PATH=${VIRTUAL_ENV}/bin:${PATH}
 ENV HOME=/opt
@@ -58,4 +58,9 @@ ENV WITH_ERROR_SERVER=1 \
 COPY ./*.sh ${CODE_DIR}/
 WORKDIR ${CODE_DIR}
 
+USER root
+RUN chmod -R 777 $HOME
+# Security scanners require non-root user to be explicitly specified for the Docker image
+USER nonroot
+
 ENTRYPOINT ["sh", "-c", "exec ${CODE_DIR}/start_server.sh \"$@\"", "--"]