fix: run eval container as non-root — claude CLI rejects --dangerously-skip-permissions as root

Claude Code CLI blocks --dangerously-skip-permissions when running
as uid=0 for security. Add a 'runner' user to the Docker image and
set --user runner on the container.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

.github/workflows/evals.yml

@@ -62,6 +62,7 @@ jobs:
       credentials:
         username: ${{ github.actor }}
         password: ${{ secrets.GITHUB_TOKEN }}
+      options: --user runner
     timeout-minutes: 20
     strategy:
       fail-fast: false
@@ -108,18 +109,6 @@ jobs:
 
       - run: bun run build
 
-      - name: Debug claude CLI
-        env:
-          ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
-        run: |
-          echo "=== which claude ===" && which claude 2>&1 || true
-          echo "=== claude path ===" && ls -la $(which claude 2>/dev/null) 2>&1 || true
-          echo "=== node version ===" && node --version 2>&1 || true
-          echo "=== claude version ===" && claude --version 2>&1 || true
-          echo "=== claude smoke ===" && echo "say hi" | claude -p --output-format text --dangerously-skip-permissions 2>&1 | head -10 || true
-          echo "=== HOME ===" && echo $HOME
-          echo "=== id ===" && id 2>&1 || true
-
       - name: Run ${{ matrix.suite.name }}
         env:
           ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}