0.5.0

kramuenke released this 21 Jun 01:47

· 34 commits to pasley since this release

What's Changed

feat: New default for securityContext for all containers by setting securityContext to a compliant restricted policy. This should alleviate install errors when running a pod security admission controller. The new default is:

  securityContext:
    runAsNonRoot: true
    runAsUser: 1000
    runAsGroup: 1000
    allowPrivilegeEscalation: true
    capabilities:
      drop:
        - ALL
    seccompProfile:
      type: RuntimeDefault

fix: adds security context to init containers
fix: moves opa configuration out of orchestrator

Full Changelog: 0.4.1...0.5.0

Assets 2