Skip to content
This repository has been archived by the owner on Apr 22, 2024. It is now read-only.

warnings about "Warning: would violate PodSecurity "restricted:v1.24" #9 #12

Open
augustrh opened this issue Dec 6, 2023 · 2 comments

Comments

@augustrh
Copy link

augustrh commented Dec 6, 2023

When deploying some apps the following warning appears.

Warning: would violate PodSecurity "restricted:v1.24": allowPrivilegeEscalation != false (container "work" must set security
Context.allowPrivilegeEscalation=false), unrestricted capabilities (container "work" must set securityContext.capabilities.d
rop=["ALL"]), runAsNonRoot != true (pod or container "work" must set securityContext.runAsNonRoot=true), seccompProfile (pod
 or container "work" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")

It appears the workaround is here: https://access.redhat.com/solutions/7002730 and it is possible to avoid the warning. Functionality is not affected but raising for awareness.

@wkulhanek
Copy link

Probably a function of using 4.13. I don't see that in 4.14

@augustrh
Copy link
Author

augustrh commented Dec 7, 2023

According to the KB it's 4.11+ which aligns with the 1.24 note in the error. It's not hurting anything just thought it looked ugly. Means the deployment code for many steps needs updating and might not be worth the time.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants