.gitare easily copied into a runtime container image by accident when using a Dockerfile.
root. It's no different in a container. Every container image may have a different set of non-privileged users.
rootuser by default. You should configure it to use a non-root user according to the base image you use. For example:
user.nameproperty is now