-
Notifications
You must be signed in to change notification settings - Fork 327
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Seccomp mutation for both notations #411
Conversation
aac1dd3
to
6c8d756
Compare
Signed-off-by: Aleksandr Arefev <[email protected]>
Signed-off-by: Aleksandr Arefev <[email protected]>
Signed-off-by: Aleksandr Arefev <[email protected]>
Signed-off-by: Aleksandr Arefev <[email protected]>
Signed-off-by: Aleksandr Arefev <[email protected]>
Signed-off-by: Aleksandr Arefev <[email protected]>
461c841
to
71cff3d
Compare
Signed-off-by: Aleksandr Arefev <[email protected]>
Signed-off-by: Aleksandr Arefev <[email protected]>
Signed-off-by: Aleksandr Arefev <[email protected]>
Signed-off-by: Aleksandr Arefev <[email protected]>
Signed-off-by: Aleksandr Arefev <[email protected]>
@@ -7,23 +7,30 @@ title: seccomp | |||
|
|||
### Usage | |||
```shell | |||
kubectl apply -f https://raw.githubusercontent.com/open-policy-agent/gatekeeper-library/master/mutation/pod-security-policy/seccomp/samples/mutation.yaml |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Hmm, looks like we are missing mutation-annotation
.
@nilekhc Looks like the website generator currently will only retain the final mutation sample per directory? https://github.com/open-policy-agent/gatekeeper-library/blob/master/scripts/website/generate.go#L226
This issue/PR has been automatically marked as stale because it has not had recent activity. It will be closed in 14 days if no further activity occurs. Thank you for your contributions. |
This issue/PR has been automatically marked as stale because it has not had recent activity. It will be closed in 14 days if no further activity occurs. Thank you for your contributions. |
What this PR does / why we need it:
Currently,
Seccomp
mutation rule work only for pod annotation.Seccomp
mutation for Podspec.securityContext.seccompProfile
should be supported.Which issue(s) does this PR fix:
Fixes #
Special notes for your reviewer: