Rob Ferguson · Rob Ferguson
--- a/chart/templates/require-non-root-user.yaml

+ 2

− 3
+++ b/chart/templates/require-non-root-user.yaml

+ 2

− 3
 @@ -36,9 +36,8 @@ spec:
          {{- include "kyverno-policies.excludeContainersPrecondition" (merge (dict "name" $name) .) | nindent 4 }}
        anyPattern:
          - (securityContext):
-              =(runAsUser): ">0"
-          - (securityContext):
-              =(runAsNonRoot): "true"
+              =(runAsUser): "!0"
+              =(runAsNonRoot): "!false"
      - list: request.object.spec.[ephemeralContainers, initContainers, containers][]
        preconditions:
          all: