alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 3 Actions Activity

Merge pull request 'feat: add security context' (#6849) from tmp/cilium-2 into main
All checks were successful
lint-test-helm / lint-helm (push) Successful in 29s
Details
lint-test-helm / validate-kubeconform (push) Has been skipped
Details
renovate / renovate (push) Successful in 4m3s
Details

Browse Source 
Reviewed-on: #6849
This commit was merged in pull request #6849.
This commit is contained in:
Alex Lebens
2026-05-10 22:52:12 +00:00
parent 161b024f08 282b3c0f74
commit 332bcf5270
1 changed files with 20 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
clusters/cl01tl/helm/cilium/values.yaml
View File

@@ -6,6 +6,26 @@ cilium:
qps: 50 qps: 50
burst: 100 burst: 100
rollOutCiliumPods: true rollOutCiliumPods: true
securityContext:
capabilities:
ciliumAgent:
- CHOWN
- KILL
- NET_ADMIN
- NET_RAW
- IPC_LOCK
- SYS_ADMIN
- SYS_RESOURCE
- DAC_OVERRIDE
- FOWNER
- SETGID
- SETUID
- PERFMON
- BPF
cleanCiliumState:
- NET_ADMIN
- SYS_ADMIN
- SYS_RESOURCE
bpf: bpf:
hostLegacyRouting: true hostLegacyRouting: true
devices: end0 enp6s0 devices: end0 enp6s0