The Docker image uses a dedicated non-root user called
In the deployment specification of the pod, don't forget to add:
Make sure to provide enough memory and CPU requests (for instance,
Do not redefine the entrypoint, but override the command instead. See this issue for more details.
The more resources you grant to the pod, the more responsive the API will be.
We don't recommend exposing your instances to the external world. In terms of security, you should consider Gotenberg as a database.