Skip to content

Commit

Permalink
16214 SEC Allow to configure cadvisor /var/run to be read-only
Browse files Browse the repository at this point in the history
You can now configure /var/run, which is mounted in cadvisor to be readOnly.
This is a prerequisite for running the Kubernetes collectors in Google
Kubernetes Engine Autopilot.

Change-Id: Ic7d40344c767f2ce248cc1ca3bb44583d3c82de4
  • Loading branch information
anthonyh209 committed Nov 6, 2023
1 parent 9866db4 commit 3c90d9b
Showing 1 changed file with 14 additions and 0 deletions.
14 changes: 14 additions & 0 deletions .werks/16214
Original file line number Diff line number Diff line change
@@ -0,0 +1,14 @@
Title: Allow to configure cadvisor /var/run to be read-only
Class: security
Compatible: compat
Component: helm
Date: 1699274046
Edition: cre
Knowledge: doc
Level: 1
State: unknown
Version: 1.5.0

You can now configure /var/run, which is mounted in cadvisor to be readOnly.
This is a prerequisite for running the Kubernetes collectors in Google
Kubernetes Engine Autopilot.

0 comments on commit 3c90d9b

Please sign in to comment.