From e59c1fb6271f2a89d563868ce9f0904d15057a27 Mon Sep 17 00:00:00 2001
From: BAK BYEONG JUN <richard.bak@loafle.com>
Date: Tue, 8 Apr 2025 18:02:57 +0000
Subject: [PATCH] bug fixed

---
 tasks/git-clone-checkout/task.yaml | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/tasks/git-clone-checkout/task.yaml b/tasks/git-clone-checkout/task.yaml
index 5b40973..cee7620 100644
--- a/tasks/git-clone-checkout/task.yaml
+++ b/tasks/git-clone-checkout/task.yaml
@@ -103,7 +103,12 @@ spec:
         value: $(workspaces.ssl-ca-directory.path)
       securityContext:
         runAsNonRoot: true
-        runAsUser: 65532
+        allowPrivilegeEscalation: false
+        capabilities:
+          drop:
+            - ALL
+        seccompProfile:
+          type: RuntimeDefault
       script: |
         #!/usr/bin/env sh
         set -eu