diff --git a/charts/sn-platform/templates/toolset/toolset-statefulset.yaml b/charts/sn-platform/templates/toolset/toolset-statefulset.yaml
index 75c0ea1a..d9774e90 100644
--- a/charts/sn-platform/templates/toolset/toolset-statefulset.yaml
+++ b/charts/sn-platform/templates/toolset/toolset-statefulset.yaml
@@ -72,6 +72,7 @@ spec:
 {{ toYaml .Values.toolset.tolerations | indent 8 }}
     {{- end }}
       terminationGracePeriodSeconds: {{ .Values.toolset.gracePeriod }}
+    {{- if .Values.toolset.installBusybox }}
       initContainers:
       - name: busybox
         image: "{{ .Values.images.toolset.busybox.repository }}:{{ .Values.images.toolset.busybox.tag }}"
@@ -83,13 +84,20 @@ spec:
         command: ["sh", "-c"]
         args:
         - |
+          set -ex
+          cd /home
           mkdir binaries;
           busybox --install -s binaries;
-          cp binaries/* /tmp/binaries;
-          cp /bin/busybox /tmp/binaries;
+          cp binaries/* tmp/binaries;
+          cp /bin/busybox tmp/binaries;
+        securityContext:
+          runAsUser: 65534
+          runAsGroup: 65534
+          runAsNonRoot: true
         volumeMounts:
         - name: binaries
-          mountPath: /tmp/binaries
+          mountPath: /home/tmp/binaries
+    {{- end }}
       containers:
       - name: "pulsar"
         {{- include "pulsar.toolset.image" . | nindent 8 }}
@@ -116,12 +124,14 @@ spec:
 {{ toYaml . | indent 8 }}
 {{- end }}
         volumeMounts:
+        {{- if .Values.toolset.installBusybox }}
         - name: binaries
           mountPath: /bin/busybox
           subPath: busybox
         - name: binaries
           mountPath: /bin/vi
           subPath: vi
+        {{- end }}
         {{- include "pulsar.toolset.certs.volumeMounts" . | nindent 8 }}
         {{- include "pulsar.toolset.token.volumeMounts" . | nindent 8 }}
         {{- include "pulsar.toolset.log.volumeMounts" . | nindent 8 }}
@@ -160,8 +170,10 @@ spec:
 {{- end }}
       {{- end }}
       volumes:
+      {{- if .Values.toolset.installBusybox }}
       - name: binaries
         emptyDir: {}
+      {{- end }}
       {{- include "pulsar.toolset.certs.volumes" . | nindent 6 }}
       {{- include "pulsar.toolset.token.volumes" . | nindent 6 }}
       {{- include "pulsar.toolset.log.volumes" . | nindent 6 }}
diff --git a/charts/sn-platform/values.yaml b/charts/sn-platform/values.yaml
index c76f68f4..34b50869 100644
--- a/charts/sn-platform/values.yaml
+++ b/charts/sn-platform/values.yaml
@@ -1560,6 +1560,7 @@ proxy:
 toolset:
   component: toolset
   useProxy: false
+  installBusybox: true
   replicaCount: 1
   # nodeSelector:
     # cloud.google.com/gke-nodepool: default-pool