Merge pull request #106 from DFE-Digital/1832-security-aks-container-…

…hardening-privilege-escalation [1832] Disallow privilege escalation
DFE-Digital · Jun 28, 2024 · 83e8d1a · 83e8d1a
2 parents 070041d + ad403da
commit 83e8d1a
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/aks/application/resources.tf b/aks/application/resources.tf
@@ -167,6 +167,8 @@ resource "kubernetes_deployment" "main" {
           }
 
           security_context {
+            allow_privilege_escalation = false
+
             seccomp_profile {
               type = "RuntimeDefault"
             }