search

cilium / tetragon

eBPF-based Security Observability and Runtime Enforcement
https://tetragon.io
Apache License 2.0
3.66k stars 369 forks source link

helm: Set rthooks.podSecurityContext to empty by default #2934

Closed michi-covalent closed 2 months ago

michi-covalent commented 2 months ago

[ upstream commit 255835998a8295f2500afc03d978f5a59b07dc85 ]

Set rthooks.podSecurityContext to empty by default to be consistent with the security context setting of Tetragon pods. Also note that "privileged" setting only applies to container security context ^1.

michi-covalent commented 2 months ago

backporting https://github.com/cilium/tetragon/pull/2931 to v1.2 branch.