It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

How to run Bitbucket Pipeline as non-root user

I need to run my build as a non-root user.


This shows how to do it but it would be better if there was a simple configuration step I could. Is there?

3 answers

0 votes

You can override override the default user of your build container using the `run-as-user` parameter in your image configuration.

More details on this page: Use Docker images as build environments.

Using `run-as-user` did not work for me either. This is how I did it using gosu,


$ cat bitbucket-pipelines.yml

# You can use any Docker image from Docker Hub or your own container registry
image: maven:3.3.3

depth: 50 # Need to clone more than 1 to allow builds to be rerun without requiring a rebase

- step:
size: 2x
- maven
script: # Modify the commands below to build and test your repository.
- ./
- id -u build &>/dev/null || useradd --user-group --create-home --shell /bin/false build
- gosu build mvn --version
- gosu build mvn -B clean install


$ cat 

#!/usr/bin/env bash
#add-apt-repository ppa:tianon/gosu
apt-get update
apt-get install -y --no-install-recommends gosu   

So effectively the default user in your image still is root I guess and the user is created in script runtime. This won't work as my image has a different default user. I wonder what the application specifications say for the bitbucket pipeline service in this scenario. Is there a requirement to run an image as root? So to share the root user resource between the host system and the pipeline?

Hi Janek,

Your docker image (in this case maven:3.3.3) has a default run-as-user directive (probably root) that is defined when the image was created and determines what user the build container is run as.

If you wish to run the build container as a different user you can do 2 things:

  1. Change the default run-as-user directive when creating the Docker image, i.e. the USER instruction in the Dockerfile (see
  2. Add the "run-as-user" attribute to your pipelines.yml file to instruct Pipelines to start the build container as a different user to the default.
    name: maven:3.3.3
    run-as-user: 1000

    Note that when you do this the alternate user (in this example a user with id 1000) must already exist in the image (maven:3.3.3). This requires creating the user (with a home directory) when the Docker image was created. If you don't own the Docker image you may create your own image based on the desired image (in which case you can also opt for option #1 as described above).

This feature simply allow you to instruct Pipelines to start the build container as a different user when more than 1 user exists in the image and the one you want to run as is not the default.

HI @StannousBaratheon when my Docker image has the USER directive (and non-root), the build is marked as failed within the build init step (before any pipeline step script command itself is actually run). Any idea?

Like fabian_kasper likes this

It is an old topic but, please, avoid chmod 777 unless really necessary.
Don't make potential security holes on your server. 

When non-root, during deployment, one shall use only available permission against own application or docker which shall be non root.

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted in Bitbucket

Contest: Share your custom Bitbucket Pipe and win

Announced in this blog, this holiday season we’re celebrating all things CI/CD and between now and the end of 2019 we’ll be showcasing content, use cases, feature announcements and more. One featur...

1,148 views 5 4
Join discussion

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you