diff --git a/Dockerfile b/Dockerfile
index d6e51277e7..09beb71a94 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -24,5 +24,4 @@ RUN pip install .
 WORKDIR /data
 VOLUME [ "/data" ]
 
-ENTRYPOINT ["/app/docker/entrypoint.sh"]
 CMD ["ggshield"]
diff --git a/changelog.d/20250820_163548_salome.voltz_scrt_5812_investigate_ggshield_running_into_an_ownership_issue_in_git.md b/changelog.d/20250820_163548_salome.voltz_scrt_5812_investigate_ggshield_running_into_an_ownership_issue_in_git.md
new file mode 100644
index 0000000000..0593091bf1
--- /dev/null
+++ b/changelog.d/20250820_163548_salome.voltz_scrt_5812_investigate_ggshield_running_into_an_ownership_issue_in_git.md
@@ -0,0 +1,42 @@
+<!--
+A new scriv changelog fragment.
+
+Uncomment the section that is right (remove the HTML comment wrapper).
+For top level release notes, leave all the headers commented out.
+-->
+
+<!--
+### Removed
+
+- A bullet item for the Removed category.
+
+-->
+<!--
+### Added
+
+- A bullet item for the Added category.
+
+-->
+
+### Fixed
+
+- Bypass git dubious ownership errors by default.
+
+<!--
+### Deprecated
+
+- A bullet item for the Deprecated category.
+
+-->
+<!--
+### Fixed
+
+- A bullet item for the Fixed category.
+
+-->
+<!--
+### Security
+
+- A bullet item for the Security category.
+
+-->
diff --git a/docker/actions-secret-entrypoint.sh b/docker/actions-secret-entrypoint.sh
index 477274484b..7e3254199d 100755
--- a/docker/actions-secret-entrypoint.sh
+++ b/docker/actions-secret-entrypoint.sh
@@ -1,4 +1,4 @@
 #!/usr/bin/env bash
 set -euo pipefail
 args=("$@")
-exec /app/docker/entrypoint.sh ggshield secret scan -v ${args[@]} ci
+exec ggshield secret scan -v ${args[@]} ci
diff --git a/docker/entrypoint.sh b/docker/entrypoint.sh
deleted file mode 100755
index 7c045a3269..0000000000
--- a/docker/entrypoint.sh
+++ /dev/null
@@ -1,12 +0,0 @@
-#!/usr/bin/env bash
-set -euo pipefail
-
-export GG_GIT_CONFIG=/tmp/ggshield-git-config
-
-# Mark the current directory as safe. If we don't do this, git commands fail
-# because the source in $PWD is owned by a different user than our `app` user.
-#
-# We use our own git config because ggshield ignores the global git configuration file.
-git config --file "$GG_GIT_CONFIG" --add safe.directory "$PWD"
-
-exec "$@"
diff --git a/ggshield/utils/git_shell.py b/ggshield/utils/git_shell.py
index 5fae533ca1..c61dfe1bc6 100644
--- a/ggshield/utils/git_shell.py
+++ b/ggshield/utils/git_shell.py
@@ -214,7 +214,13 @@ def git(
         logger.debug("command=%s timeout=%d", command, timeout)
         result = subprocess.run(
             (
-                [_get_git_path(), "-c", "core.quotePath=false"]
+                [
+                    _get_git_path(),
+                    "-c",
+                    "core.quotePath=false",
+                    "-c",
+                    "safe.directory=*",
+                ]
                 + (
                     ["-c", "core.longpaths=true"]
                     if platform.system() == "Windows"