From 343b1a81fbab0ad463c726d1fd6fd87cbbd7c241 Mon Sep 17 00:00:00 2001
From: Jordan Carlin <jordanmcarlin@gmail.com>
Date: Thu, 30 Oct 2025 07:13:53 +0000
Subject: [PATCH 1/2] feat: treat wheel group as sudo

Many distros use `wheel` as the group that grants sudo permissions. Check for
it in addition to the `sudo` group in the `build_container` script.
---
 bin/build_container | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bin/build_container b/bin/build_container
index 248dc3f0d0..808c0ab387 100755
--- a/bin/build_container
+++ b/bin/build_container
@@ -36,7 +36,7 @@ if [ $NEED_SUDO -eq 0 ]; then
   FAKEROOT=--fakeroot
   echo "Using fakeroot"
 else
-  if [[ ! -z "$GITHUB_RUN_ID" || `groups` == *"sudo"* ]]; then
+  if [[ ! -z "$GITHUB_RUN_ID" || `groups` == *"sudo"* || `groups` == *"wheel"* ]]; then
     # user has sudo permission
     SUDO=sudo
     FAKEROOT=""

From 84e804e56d0e51ab4993828a6fc66f990bb4371e Mon Sep 17 00:00:00 2001
From: Jordan Carlin <jordanmcarlin@gmail.com>
Date: Thu, 30 Oct 2025 21:33:14 +0000
Subject: [PATCH 2/2] use more precise matching for group detection

---
 bin/build_container | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bin/build_container b/bin/build_container
index 808c0ab387..e9d88ebcc5 100755
--- a/bin/build_container
+++ b/bin/build_container
@@ -36,7 +36,7 @@ if [ $NEED_SUDO -eq 0 ]; then
   FAKEROOT=--fakeroot
   echo "Using fakeroot"
 else
-  if [[ ! -z "$GITHUB_RUN_ID" || `groups` == *"sudo"* || `groups` == *"wheel"* ]]; then
+  if [[ ! -z "$GITHUB_RUN_ID" || $(groups) =~ (^|[[:space:]])(sudo|wheel)([[:space:]]|$) ]]; then
     # user has sudo permission
     SUDO=sudo
     FAKEROOT=""