Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(charts): missing security context in BPDM init containers #1090

Closed
wants to merge 1 commit into from
Closed
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
14 changes: 7 additions & 7 deletions charts/bpdm/Chart.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -22,8 +22,8 @@ apiVersion: v2
name: bpdm
type: application
description: A Helm chart for Kubernetes that deploys the BPDM applications
version: 5.2.0-rc2
appVersion: "6.2.0-rc2"
version: 5.2.0-SNAPSHOT
appVersion: "6.2.0-SNAPSHOT"
home: https://github.com/eclipse-tractusx/bpdm
sources:
- https://github.com/eclipse-tractusx/bpdm
Expand All @@ -33,23 +33,23 @@ maintainers:

dependencies:
- name: bpdm-gate
version: 6.2.0-rc2
version: 6.2.0-SNAPSHOT
alias: bpdm-gate
condition: bpdm-gate.enabled
- name: bpdm-pool
version: 7.2.0-rc2
version: 7.2.0-SNAPSHOT
alias: bpdm-pool
condition: bpdm-pool.enabled
- name: bpdm-cleaning-service-dummy
version: 3.2.0-rc2
version: 3.2.0-SNAPSHOT
alias: bpdm-cleaning-service-dummy
condition: bpdm-cleaning-service-dummy.enabled
- name: bpdm-orchestrator
version: 3.2.0-rc2
version: 3.2.0-SNAPSHOT
alias: bpdm-orchestrator
condition: bpdm-orchestrator.enabled
- name: bpdm-common
version: 1.0.1
version: 1.0.2
- name: postgresql
version: 12.12.10
repository: https://charts.bitnami.com/bitnami
Expand Down
6 changes: 3 additions & 3 deletions charts/bpdm/charts/bpdm-cleaning-service-dummy/Chart.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -21,15 +21,15 @@
apiVersion: v2
type: application
name: bpdm-cleaning-service-dummy
appVersion: "6.2.0-rc2"
version: 3.2.0-rc2
appVersion: "6.2.0-SNAPSHOT"
version: 3.2.0-SNAPSHOT
description: A Helm chart for deploying the BPDM cleaning service
home: https://eclipse-tractusx.github.io/docs/kits/Business%20Partner%20Kit/Adoption%20View
sources:
- https://github.com/eclipse-tractusx/bpdm
dependencies:
- name: bpdm-common
version: 1.0.1
version: 1.0.2
repository: "file://../bpdm-common"
- name: centralidp
version: 3.0.1
Expand Down
2 changes: 1 addition & 1 deletion charts/bpdm/charts/bpdm-common/Chart.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@
apiVersion: v2
type: library
name: bpdm-common
version: 1.0.1
version: 1.0.2
description: A library Helm Chart for other BPDM Charts
home: https://eclipse-tractusx.github.io/docs/kits/Business%20Partner%20Kit/Adoption%20View
sources:
Expand Down
9 changes: 9 additions & 0 deletions charts/bpdm/charts/bpdm-common/templates/_deployment.tpl
Original file line number Diff line number Diff line change
Expand Up @@ -83,6 +83,15 @@ spec:
initContainers:
- name: startup-delay
image: busybox:1.28
securityContext:
allowPrivilegeEscalation: false
runAsNonRoot: true
readOnlyRootFilesystem: true
runAsUser: 10001
runAsGroup: 10001
capabilities:
drop:
- ALL
command: ['sh', '-c', "sleep {{ $.Values.startupDelaySeconds }}"]
{{- with .Values.nodeSelector }}
nodeSelector:
Expand Down
6 changes: 3 additions & 3 deletions charts/bpdm/charts/bpdm-gate/Chart.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -21,8 +21,8 @@
apiVersion: v2
type: application
name: bpdm-gate
appVersion: "6.2.0-rc2"
version: 6.2.0-rc2
appVersion: "6.2.0-SNAPSHOT"
version: 6.2.0-SNAPSHOT
description: A Helm chart for deploying the BPDM gate service
home: https://eclipse-tractusx.github.io/docs/kits/Business%20Partner%20Kit/Adoption%20View
sources:
Expand All @@ -34,7 +34,7 @@ dependencies:
alias: postgres
condition: postgres.enabled
- name: bpdm-common
version: 1.0.1
version: 1.0.2
repository: "file://../bpdm-common"
- name: centralidp
version: 3.0.1
Expand Down
6 changes: 3 additions & 3 deletions charts/bpdm/charts/bpdm-orchestrator/Chart.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -21,15 +21,15 @@
apiVersion: v2
type: application
name: bpdm-orchestrator
appVersion: "6.2.0-rc2"
version: 3.2.0-rc2
appVersion: "6.2.0-SNAPSHOT"
version: 3.2.0-SNAPSHOT
description: A Helm chart for deploying the BPDM Orchestrator service
home: https://eclipse-tractusx.github.io/docs/kits/Business%20Partner%20Kit/Adoption%20View
sources:
- https://github.com/eclipse-tractusx/bpdm
dependencies:
- name: bpdm-common
version: 1.0.1
version: 1.0.2
repository: "file://../bpdm-common"
- name: postgresql
version: 12.12.10
Expand Down
6 changes: 3 additions & 3 deletions charts/bpdm/charts/bpdm-pool/Chart.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -21,8 +21,8 @@
apiVersion: v2
type: application
name: bpdm-pool
appVersion: "6.2.0-rc2"
version: 7.2.0-rc2
appVersion: "6.2.0-SNAPSHOT"
version: 7.2.0-SNAPSHOT
description: A Helm chart for deploying the BPDM pool service
home: https://eclipse-tractusx.github.io/docs/kits/Business%20Partner%20Kit/Adoption%20View
sources:
Expand All @@ -34,7 +34,7 @@ dependencies:
alias: postgres
condition: postgres.enabled
- name: bpdm-common
version: 1.0.1
version: 1.0.2
repository: "file://../bpdm-common"
- name: centralidp
version: 3.0.1
Expand Down
2 changes: 1 addition & 1 deletion pom.xml
Original file line number Diff line number Diff line change
Expand Up @@ -49,7 +49,7 @@
</modules>

<properties>
<revision>6.2.0-rc2</revision>
<revision>6.2.0-SNAPSHOT</revision>
<java.version>21</java.version>
<maven.compiler.source>21</maven.compiler.source>
<maven.compiler.target>21</maven.compiler.target>
Expand Down
Loading