I've raised a bug for it here: https://github.com/pantsbuild/pants/issues/18306

@happy-kitchen-89482 it seemed clear to me a week ago 2.15.x should be divorced from a feature. This just makes it more clear. This is presumably broken for ~every Linux docker image + host.

I did this in Pex a long time ago to ~generically work around this issue: + https://github.com/pantsbuild/pex/blob/main/docker/user/Dockerfile + https://github.com/pantsbuild/pex/blob/main/docker/user/create_docker_image_user.sh Basically take any existing image and make it have a user that matches me.

Pants could do something similar here or it could just try getting away with actually passing uid:gid.

The image shim trick - which is I think basically all MS dev containers are - is trickier on a generic image since you don't know for sure what user and group administration commands exist in the base image. That varies per distro, and the commands might not exist at all for a containerless style super-slim image.

It also highlights the one weakness I think the current docker support has which is support for runtime build args that aren't env vars. I mean env vars do work, but they make explaining how to build a docker image to a member of a team very onerous, or require a wrapper script which annoys me as I feel the way pants could let any dev checkout the code and do

pants lint test package publish ::

is amazing and I don't want to add any more complexity to that command unless super neccesary.