mirror of
https://github.com/optim-enterprises-bv/kubernetes.git
synced 2025-11-01 18:58:18 +00:00
0813904404
* restricted profile comply with PSA v1.27 * add test case * Reflect review comments * Reflect review comments 2 * Reflect review comments 3
24 lines
467 B
YAML
24 lines
467 B
YAML
apiVersion: v1
|
|
kind: Pod
|
|
metadata:
|
|
labels:
|
|
run: target
|
|
name: target
|
|
spec:
|
|
securityContext:
|
|
seccompProfile:
|
|
type: Localhost
|
|
localhostProfile: dummy.json
|
|
containers:
|
|
- image: busybox
|
|
name: target
|
|
command: ["/bin/sh", "-c", "sleep 100"]
|
|
securityContext:
|
|
runAsUser: 1000
|
|
runAsGroup: 1000
|
|
runAsNonRoot: true
|
|
allowPrivilegeEscalation: false
|
|
capabilities:
|
|
drop:
|
|
- "ALL"
|