Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: add helm chart #137

Merged
merged 8 commits into from
May 14, 2024
Prev Previous commit
Next Next commit
Secure by default - set the security context and pod security context
Signed-off-by: Sachin Kamboj <[email protected]>
skamboj committed May 14, 2024
commit 6a3794f3d62e0f88f61d69cb557c65eb422766df
23 changes: 13 additions & 10 deletions charts/goldpinger/values.yaml
Original file line number Diff line number Diff line change
@@ -119,19 +119,22 @@ podSecurityPolicy:

## Set security context of the goldpinger container
## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
containerSecurityContext: {}
# allowPrivilegeEscalation: false
# privileged: false
# readOnlyRootFilesystem: true
containerSecurityContext:
capabilities:
drop:
- ALL
allowPrivilegeEscalation: false
readOnlyRootFilesystem: true
runAsNonRoot: true

## Set security context of the pod
## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
podSecurityContext: {}
# runAsNonRoot: true
# runAsUser: 1001
# runAsGroup: 2001
# seccompProfile:
# type: RuntimeDefault
podSecurityContext:
runAsNonRoot: true
runAsUser: 1000
fsGroup: 2000
seccompProfile:
type: RuntimeDefault

serviceMonitor:
enabled: false