baschno/buun-stack
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
022c85c0dc09ae267273855051512163054c232b
buun-stack/postgres/cnpg-values.yaml
Masaki Yatsu d036c479d3 chore(postgres): set pod security standards
2025-11-23 15:02:24 +09:00

27 lines
538 B
YAML
Raw Blame History

# Pod Security Context for restricted Pod Security Standards
podSecurityContext:
runAsNonRoot: true
seccompProfile:
type: RuntimeDefault
fsGroup: 10001
# Container Security Context for restricted Pod Security Standards
containerSecurityContext:
allowPrivilegeEscalation: false
readOnlyRootFilesystem: true
runAsUser: 10001
runAsGroup: 10001
seccompProfile:
type: RuntimeDefault
capabilities:
drop:
- ALL
resources:
requests:
cpu: 50m
memory: 128Mi
limits:
cpu: 100m
memory: 256Mi
Reference in New Issue View Git Blame Copy Permalink