Starting with .NET 8, all Linux container images will include a non-root user, making .NET one of the most secure developer ecosystems. This aligns with the principle of least privilege, greatly limiting what a bad actor could do in the container. Non-root containers also contribute to a secure supply chain, providing a last defense against bad dependencies. Learn more about the benefits and workflows for creating non-root containers in this post, with follow-on guidance for using them with Kubernetes. For a simpler option, check out built-in container support in the .NET SDK.
