UD-1425: set the trivy security contest to run as non-root, preventin…

…g POP-302,POP-306
undistro · May 7, 2024 · e03a733 · e03a733
1 parent 8e36380
commit e03a733
Showing 1 changed file with 1 addition and 0 deletions.
diff --git a/charts/zora/templates/plugins/trivy.yaml b/charts/zora/templates/plugins/trivy.yaml
@@ -30,6 +30,7 @@ spec:
   {{- end }}
   mountCustomChecksVolume: false
   securityContext:
+    runAsNonRoot: true
     allowPrivilegeEscalation: false
     privileged: false
   {{- with .Values.scan.plugins.trivy.envFrom }}