Only allow chown via sudo

Dockerfile

@@ -16,7 +16,7 @@ RUN mkdir /freqtrade \
   && useradd -u 1000 -G sudo -U -m ftuser \
   && chown ftuser:ftuser /freqtrade \
   # Allow sudoers
-  && echo "ftuser ALL=(ALL) NOPASSWD: ALL" >> /etc/sudoers
+  && echo "ftuser ALL=(ALL) NOPASSWD: /bin/chown" >> /etc/sudoers
 
 WORKDIR /freqtrade
 

Dockerfile.armhf

@@ -16,7 +16,7 @@ RUN mkdir /freqtrade \
   && useradd -u 1000 -G sudo -U -m ftuser \
   && chown ftuser:ftuser /freqtrade \
   # Allow sudoers
-  && echo "ftuser ALL=(ALL) NOPASSWD: ALL" >> /etc/sudoers
+  && echo "ftuser ALL=(ALL) NOPASSWD: /bin/chown" >> /etc/sudoers
 
 WORKDIR /freqtrade
 

docker/Dockerfile.custom

@@ -1,7 +1,10 @@
 FROM freqtradeorg/freqtrade:develop
 
-RUN sudo apt-get update \
+# Switch user to root if you must install something from apt
-    && sudo apt-get -y install git \
+# Don't forget to switch the user back below!
-    && sudo apt-get clean \
+# USER root
+
 # The below dependency - pyti - serves as an example. Please use whatever you need!
-    && pip install --user pyti
+RUN pip install --user pyti
+
+# USER ftuser