From 6a77aa897a51d38c1f9d909281e44dffc1db2e39 Mon Sep 17 00:00:00 2001 From: Stefan Reimer Date: Mon, 22 Jul 2024 11:02:52 +0000 Subject: [PATCH] fix: use hardcoded values to fix quoting issue --- charts/kubezero-argo/values.yaml | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/charts/kubezero-argo/values.yaml b/charts/kubezero-argo/values.yaml index 2c953c61..53d3069d 100644 --- a/charts/kubezero-argo/values.yaml +++ b/charts/kubezero-argo/values.yaml @@ -152,7 +152,14 @@ argo-cd: - mountPath: /home/argocd/.kube name: kubeconfigs securityContext: - '{{- toYaml .Values.repoServer.containerSecurityContext | nindent 4 }}' + runAsNonRoot: true + readOnlyRootFilesystem: true + allowPrivilegeEscalation: false + seccompProfile: + type: RuntimeDefault + capabilities: + drop: + - ALL server: # Rename former https port to grpc, works with istio + insecure