Adding missing readOnlyRootFilesystem flag for container security context
Change-Id: Ibc8e259dabad9a162f43df0b7eb4d94e3f3e5c9b
This commit is contained in:
KHIYANI, RAHUL (rk0850)
Rahul Khiyani
parent
81d2d687c8
commit
9d808c96fa
@ -86,6 +86,7 @@ pod:
|
|||||||
container:
|
container:
|
||||||
server:
|
server:
|
||||||
runAsUser: 0
|
runAsUser: 0
|
||||||
|
readOnlyRootFilesystem: false
|
||||||
error_pages:
|
error_pages:
|
||||||
pod:
|
pod:
|
||||||
runAsUser: 65534
|
runAsUser: 65534
|
||||||
@ -100,12 +101,14 @@ pod:
|
|||||||
exporter:
|
exporter:
|
||||||
runAsUser: 99
|
runAsUser: 99
|
||||||
allowPrivilegeEscalation: false
|
allowPrivilegeEscalation: false
|
||||||
|
readOnlyRootFilesystem: true
|
||||||
prometheus_create_mysql_user:
|
prometheus_create_mysql_user:
|
||||||
pod:
|
pod:
|
||||||
runAsUser: 0
|
runAsUser: 0
|
||||||
container:
|
container:
|
||||||
main:
|
main:
|
||||||
allowPrivilegeEscalation: false
|
allowPrivilegeEscalation: false
|
||||||
|
readOnlyRootFilesystem: true
|
||||||
tests:
|
tests:
|
||||||
pod:
|
pod:
|
||||||
runAsUser: 999
|
runAsUser: 999
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user