From 474c78b9bd46bca37ebcd88152ddf24f057de15c Mon Sep 17 00:00:00 2001
From: Shoaeb Jindani <jindani.shoaeb@ibm.com>
Date: Fri, 9 Feb 2024 14:13:08 +0530
Subject: [PATCH] Adding Restriction on Security Context so that unshare calls
 are not allowed

Signed-off-by: Shoaeb Jindani <jindani.shoaeb@ibm.com>
---
 definitions/console/deployment.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/definitions/console/deployment.yaml b/definitions/console/deployment.yaml
index 7bfdada6..0e3ed7f8 100644
--- a/definitions/console/deployment.yaml
+++ b/definitions/console/deployment.yaml
@@ -62,6 +62,8 @@ spec:
               ephemeral-storage: 100M
               memory: 1000Mi
           securityContext:
+            seccompProfile:
+              type: RuntimeDefault
             allowPrivilegeEscalation: false
             capabilities:
               add: