diff --git a/components/hydra-sql/resources/hydra-sql-deployment.yaml b/components/hydra-sql/resources/hydra-sql-deployment.yaml
index 207b9a5..c48b87c 100644
--- a/components/hydra-sql/resources/hydra-sql-deployment.yaml
+++ b/components/hydra-sql/resources/hydra-sql-deployment.yaml
@@ -36,6 +36,10 @@ spec:
             initialDelaySeconds: 10
             periodSeconds: 30
           resources: {}
+          securityContext:
+            runAsNonRoot: true
+            runAsGroup: 1000
+            runAsUser: 1000
           envFrom:
             - configMapRef:
                 name: hydra-sql-env
@@ -94,6 +98,10 @@ spec:
             - name: CADDY_APP_ROOT_PUBLIC
               value: "/app/public/"
           resources: {}
+          securityContext:
+            runAsNonRoot: true
+            runAsGroup: 1000
+            runAsUser: 1000
           ports:
             - containerPort: 8080
           volumeMounts: