diff --git a/.github/workflows/pipeline.yml b/.github/workflows/pipeline.yml
index 0472d2b..b60ed4f 100644
--- a/.github/workflows/pipeline.yml
+++ b/.github/workflows/pipeline.yml
@@ -40,7 +40,7 @@ jobs:
       pre-command: |
         curl -sSfL https://github.com/hadolint/hadolint/releases/download/v2.12.0/hadolint-Linux-x86_64 -o /usr/local/bin/hadolint && \
         chmod +x /usr/local/bin/hadolint
-      command: hadolint -f sarif --ignore DL3002 Dockerfile > hadolint.sarif
+      command: hadolint -f sarif Dockerfile > hadolint.sarif
       artifact-upload-name: hadolint.sarif
       artifact-upload-path: hadolint.sarif
 
@@ -110,6 +110,9 @@ jobs:
         install: true
         use: true
 
+    - name: Fix Dockerfile
+      run: sed -i 's/# USER root/USER root/g' Dockerfile
+
     - name: Build Image
       uses: testifysec/witness-run-action@reusable-workflow # v0.2.0
       with:
diff --git a/Dockerfile b/Dockerfile
index 6c4c1a5..a4a0f94 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -20,7 +20,7 @@ RUN go build -o bin/software
 
 FROM cgr.dev/chainguard/static@sha256:676e989769aa9a5254fbfe14abb698804674b91c4d574bb33368d87930c5c472
 
-USER root
+# USER root
 
 COPY --from=builder /build/bin/software /software