Closed flavio closed 2 years ago
Needed to close https://github.com/kubewarden/policy-hub/issues/32
The policy has been released on the Policy Hub
@chrisns: JFYI, we've added this missing PSP. We're also currently working on the seccomp one.
Thanks a lot for the wonderful work you're doing with https://github.com/appvia/psp-migration
Create a new Kubewarden policy that can be used to replace the
ReadOnlyRootFilesystem
official PSP.Acceptance criteria
securityContext
of all the Containers defined by a PodinitContainers
andspec.containers
. Ephemeral containers cannot have asecurityContext
, hence we can ignore them