UNCLASSIFIED - NO CUI

Skip to content
Snippets Groups Projects

Update require-run-as-non-root to honor exclusions

Merged Update require-run-as-non-root to honor exclusions
non-root-exclusion into main
All threads resolved!
Merged Rob Ferguson requested to merge non-root-exclusion into main
All threads resolved!
Viewing commit f9655164
Show latest version
1 file
+ 1
9
Compare changes
  • Side-by-side
  • Inline
chart/templates/_helpers.tpl
+ 1
9
@@ -57,15 +57,7 @@ webhookTimeoutSeconds: {{ $webhookTimeoutSeconds }}
{{- if or $globalexcludeContainers $excludeContainers }}
preconditions:
all:
- key: "{{ "{{" }} element.name {{ "}}" }}"
operator: AnyNotIn
value:
{{- if $globalexcludeContainers }}
{{- toYaml $globalexcludeContainers | nindent 10 -}}
{{- end }}
{{- if $excludeContainers }}
{{- toYaml $excludeContainers | nindent 10 -}}
{{- end }}
{{- include "kyverno-policies.excludeContainersPrecondition" (merge (dict "name" .name) .) | nindent 4 }}
{{- end }}
{{- end -}}

UNCLASSIFIED - NO CUI