fix: standardize to vscode user across all configurations#438
Merged
nazia-datainn merged 3 commits intodevelopfrom Jan 2, 2026
Merged
fix: standardize to vscode user across all configurations#438nazia-datainn merged 3 commits intodevelopfrom
nazia-datainn merged 3 commits intodevelopfrom
Conversation
- Update Dockerfile to set default USER to vscode before CMD This ensures container starts as vscode user even without devcontainer.json - Update Coder template.tf to use /home/vscode/ paths instead of /root/ - Environment variables: HISTFILE, GIT_CONFIG_GLOBAL - All volume mounts: .claude, .gemini, .m2, .npm, .vscode-server, etc. - Remove duplicate .claude.json file mount (now part of .claude/ directory) This aligns all deployment methods (local Docker, devcontainer, Coder) to consistently use the vscode non-root user for security and consistency. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
|
You have reached your Codex usage limits for code reviews. You can see your limits in the Codex usage dashboard. |
Force bash shell instead of PowerShell for the Maven settings copy step to ensure cross-platform compatibility. PowerShell doesn't support `mkdir -p` the same way as Unix shells. Fixes failing Windows matrix test in CI. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Standardizes all devcontainer and Coder configurations to use the
vscodenon-root user instead ofrootfor improved security and consistency.Changes
1. Dockerfile (.devcontainer/Dockerfile)
USER vscodedirective before CMD2. Coder Template (.coder/template.tf)
HISTFILE:/root/...→/home/vscode/...GIT_CONFIG_GLOBAL:/root/...→/home/vscode/.../home/vscode/instead of/root/:.vscode-server/extensions,.m2,.npm(caches).claude,.gemini,.config/gh,.bash_history_dir,.gitconfig_dir,.ssh,.docker,.kube(user credentials).claude.jsonfile mount (now part of.claude/directory)Impact
✅ Benefits
🔧 Fixes
Testing
Verified across all deployment methods:
Alignment Matrix
Migration Notes
For Existing Coder Workspaces
Existing workspaces will need to be recreated to use the new paths:
coder templates push simpleaccounts-uaecoder delete <workspace>thencoder create <workspace>For Local Development
Simply rebuild the devcontainer to apply changes.
🤖 Generated with Claude Code