Today to run cerberus in kubernetes/openshift it needs to be run as a privileged container, I don't think that should be necessary since cerberus is just interacting with the target cluster's API and doing any privilege activity on the cluster it is running on.
Cerberus directly writes to the /root filesystem because of which it is running as a privileged container today.
Today to run cerberus in kubernetes/openshift it needs to be run as a privileged container, I don't think that should be necessary since cerberus is just interacting with the target cluster's API and doing any privilege activity on the cluster it is running on.
Cerberus directly writes to the /root filesystem because of which it is running as a privileged container today.