Andrey Smirnov e6fa401b66 fix: enable seccomp default profile by default ...

This enable seccomp profile for all containers launched by Talos: apid,
trustd, etcd and kubelet.

Also by default disallow gaining more privileges in the container
(basically disables setuid). As containers are running as root this is
no-op, but soon we'll have running as non-root users and this becomes
important.

Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>

2021-08-12 21:26:58 +03:00

..

chglog

chore: use a single CHANGELOG

2020-04-17 11:24:48 -07:00

cloud-image-uploader

chore: bump dependencies via dependabot

2021-08-09 08:32:02 -07:00

docgen

fix: correctly handle nodoc for struct fields

2021-08-10 06:24:29 -07:00

protoc-gen-doc

docs: add fallback to default page description if none is set on current page

2020-12-17 13:03:27 -08:00

protoc-lint

feat: update Kubernetes to v1.22.0

2021-08-06 09:06:32 -07:00

test

chore: use k8s 1.21.3 in CAPI tests for now

2021-08-10 13:28:37 -07:00

boilerplate.txt

chore: implement DeepCopy for machine configuration

2021-07-08 07:21:24 -07:00

cleanup.sh

feat: allow external cloud provides configration

2021-04-06 22:54:24 -07:00

cloud-image-uploader.sh

chore: add drone pipeline to upload cloud images

2020-12-16 20:50:35 +03:00

containerd.toml

chore: update containerd config version 2

2021-07-01 09:08:54 -07:00

fix-artifacts.sh

feat: build Talos images/artifacts for amd64/arm64

2020-09-27 10:32:07 -07:00

release.sh

feat: implement Equinix Metal support for virtual (shared) IP

2021-08-12 17:26:59 +03:00

release.toml

fix: enable seccomp default profile by default

2021-08-12 21:26:58 +03:00

start-registry-proxies.sh

chore: add script for starting registry proxies

2021-03-19 09:37:47 -07:00