File tree 2 files changed +26
-0
lines changed
2 files changed +26
-0
lines changed Original file line number Diff line number Diff line change @@ -98,13 +98,24 @@ spec:
9898 port : 8080
9999 initialDelaySeconds : 3
100100 periodSeconds : 30
101+ securityContext :
102+ allowPrivilegeEscalation : false
103+ capabilities :
104+ drop :
105+ - ALL
106+ readOnlyRootFilesystem : true
107+ runAsNonRoot : true
108+ seccompProfile :
109+ type : RuntimeDefault
101110 volumeMounts :
102111 - mountPath : /app/config
103112 name : image-updater-conf
104113 - mountPath : /app/config/ssh
105114 name : ssh-known-hosts
106115 - mountPath : /app/.ssh
107116 name : ssh-config
117+ - mountPath : /tmp
118+ name : tmp
108119 serviceAccountName : argocd-image-updater
109120 volumes :
110121 - configMap :
@@ -124,3 +135,5 @@ spec:
124135 name : argocd-image-updater-ssh-config
125136 optional : true
126137 name : ssh-config
138+ - emptyDir : {}
139+ name : tmp
Original file line number Diff line number Diff line change @@ -181,13 +181,24 @@ spec:
181181 port : 8080
182182 initialDelaySeconds : 3
183183 periodSeconds : 30
184+ securityContext :
185+ allowPrivilegeEscalation : false
186+ capabilities :
187+ drop :
188+ - ALL
189+ readOnlyRootFilesystem : true
190+ runAsNonRoot : true
191+ seccompProfile :
192+ type : RuntimeDefault
184193 volumeMounts :
185194 - mountPath : /app/config
186195 name : image-updater-conf
187196 - mountPath : /app/config/ssh
188197 name : ssh-known-hosts
189198 - mountPath : /app/.ssh
190199 name : ssh-config
200+ - mountPath : /tmp
201+ name : tmp
191202 serviceAccountName : argocd-image-updater
192203 volumes :
193204 - configMap :
@@ -207,3 +218,5 @@ spec:
207218 name : argocd-image-updater-ssh-config
208219 optional : true
209220 name : ssh-config
221+ - emptyDir : {}
222+ name : tmp
You can’t perform that action at this time.
0 commit comments