From 9fc05cd47b349a9e832209f1912f02ec197976ad Mon Sep 17 00:00:00 2001
From: David Jeffers <david@dajeffers.com>
Date: Sun, 23 Mar 2025 14:03:24 -0400
Subject: [PATCH] Adding security settings to initcontainer

---
 clusterprism_halloween_values.yaml | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/clusterprism_halloween_values.yaml b/clusterprism_halloween_values.yaml
index 4cb9371..201600a 100644
--- a/clusterprism_halloween_values.yaml
+++ b/clusterprism_halloween_values.yaml
@@ -23,6 +23,17 @@ ingress:
   annotations:
     cert-manager.io/cluster-issuer: letsencrypt-cloudflare-prod
 
+initContainers:
+  - name: init-con
+    securityContext:
+      privileged: false
+      allowPrivilegeEscalation: false
+      capabilities:
+        drop:
+          - ALL
+      seccompProfile:
+        type: "RuntimeDefault"
+
 resources:
   requests:
     cpu: null