From 0fe0eed35a39371f4ae1005f508caccf36b126fd Mon Sep 17 00:00:00 2001
From: Erich Blume <blume.erich@gmail.com>
Date: Mon, 30 Mar 2026 06:53:34 -0700
Subject: [PATCH] Fix Kingfisher container: make /tmp world-writable

Container runs as user 65534 (nobody) but /tmp was owned by root.
Set sticky bit + world-writable (1777) like a standard /tmp.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 containers/kingfisher/default.nix | 1 +
 1 file changed, 1 insertion(+)

diff --git a/containers/kingfisher/default.nix b/containers/kingfisher/default.nix
index 93c8384..8618b88 100644
--- a/containers/kingfisher/default.nix
+++ b/containers/kingfisher/default.nix
@@ -107,6 +107,7 @@ pkgs.dockerTools.buildLayeredImage {
 
   extraCommands = ''
     mkdir -p tmp
+    chmod 1777 tmp
   '';
 
   config = {