Skip to content

Commit

Permalink
Update mariadb-deployment.yml
Browse files Browse the repository at this point in the history
  • Loading branch information
AdmiraalA authored Feb 22, 2024
1 parent d58554a commit 28806b2
Showing 1 changed file with 16 additions and 3 deletions.
19 changes: 16 additions & 3 deletions deployments/mariadb/mariadb-deployment.yml
Original file line number Diff line number Diff line change
@@ -1,3 +1,16 @@
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: default-deny
namespace: mariadb
spec:
podSelector: {}
policyTypes:
- Ingress
- Egress

---

apiVersion: apps/v1
kind: Deployment
metadata:
Expand All @@ -23,10 +36,10 @@ spec:
runAsNonRoot: true # Containers should run as a high UID to avoid host conflict
runAsUser: 103306 # Using high UID to avoid conflicts
readOnlyRootFilesystem: true # Use read-only filesystem for containers where possible
seLinuxOptions:
type: "docker/default" # Ensure that the seccomp profile is set to docker/default or runtime/default
seccompProfile:
type: RuntimeDefault # Ensure that the seccomp profile is set to docker/default or runtime/default
containers:
- image: mariadb@sha256:placeholder_digest
- image: mariadb:10.6@sha256:placeholder_digest
name: mariadb
imagePullPolicy: Always
securityContext:
Expand Down

0 comments on commit 28806b2

Please sign in to comment.