Test build for #3626

Author: SUSE Update Bot

kubectl-oldstable-image/Dockerfile

@@ -68,5 +68,6 @@ LABEL io.artifacthub.package.readme-url="%SOURCEURL_WITH(README.md)%"
 LABEL io.artifacthub.package.logo-url="https://raw.githubusercontent.com/kubernetes/kubernetes/master/logo/logo.png"
 ENTRYPOINT ["kubectl"]
 
-RUN set -euo pipefail; echo "user:x:999:100:User for CLI:/home/user:/usr/sbin/nologin" >> /etc/passwd && install -d -o 999 -g 100 -m 0755 /home/user
+RUN set -euo pipefail; echo "user:x:999:100:User for CLI:/home/user:/usr/sbin/nologin" >> /etc/passwd && install -d -o 999 -g 100 -m 0755 /home/user /home/user/.kube
+
 WORKDIR /home/user

kubectl-oldstable-image/README.md

@@ -30,7 +30,18 @@ podman run --rm --name kubectl \
       -v /localpath/to/customize:/home/user:Z
       registry.suse.com/suse/kubectl:1.33 kustomize --enable-helm
 ```
+## Running as a non-root user
 
+By default, this container runs as the `root` user. However, it is prepared to run as a non-privileged user (UID `999`) for enhanced security.
+
+To run the container in rootless mode, you must explicitly set the user and the home environment variables:
+
+```ShellSession
+podman run --rm --name kubectl \
+      --user 999:100 \
+      -e HOME=/home/user \
+      -v /localpath/to/kubeconfig:/home/user/.kube/config:Z \
+      registry.suse.com/suse/kubectl:1.33 get nodes
 
 ## Licensing
 

kubectl-stable-image/Dockerfile

@@ -69,5 +69,6 @@ LABEL io.artifacthub.package.readme-url="%SOURCEURL_WITH(README.md)%"
 LABEL io.artifacthub.package.logo-url="https://raw.githubusercontent.com/kubernetes/kubernetes/master/logo/logo.png"
 ENTRYPOINT ["kubectl"]
 
-RUN set -euo pipefail; echo "user:x:999:100:User for CLI:/home/user:/usr/sbin/nologin" >> /etc/passwd && install -d -o 999 -g 100 -m 0755 /home/user
+RUN set -euo pipefail; echo "user:x:999:100:User for CLI:/home/user:/usr/sbin/nologin" >> /etc/passwd && install -d -o 999 -g 100 -m 0755 /home/user /home/user/.kube
+
 WORKDIR /home/user

kubectl-stable-image/README.md

@@ -30,7 +30,18 @@ podman run --rm --name kubectl \
       -v /localpath/to/customize:/home/user:Z
       registry.suse.com/suse/kubectl:1.35 kustomize --enable-helm
 ```
+## Running as a non-root user
 
+By default, this container runs as the `root` user. However, it is prepared to run as a non-privileged user (UID `999`) for enhanced security.
+
+To run the container in rootless mode, you must explicitly set the user and the home environment variables:
+
+```ShellSession
+podman run --rm --name kubectl \
+      --user 999:100 \
+      -e HOME=/home/user \
+      -v /localpath/to/kubeconfig:/home/user/.kube/config:Z \
+      registry.suse.com/suse/kubectl:1.35 get nodes
 
 ## Licensing
 

pcp-image/Dockerfile

@@ -19,8 +19,7 @@
 #!BuildTag: suse/pcp:6.2.0
 #!BuildTag: suse/pcp:6.2
 #!BuildTag: suse/pcp:6
-#!BuildTag: suse/pcp:latest
-#!BuildName: suse-pcp-6.2.0
+#!BuildName: suse-pcp
 #!BuildVersion: 15.7.6.2.0
 #!BuildRelease: 60
 FROM bci/bci-init:15.7