From 078c0649950d5a7058abafbdcb548ff80daa89a2 Mon Sep 17 00:00:00 2001
From: googs1025 <googs1025@gmail.com>
Date: Fri, 13 Dec 2024 22:34:22 +0800
Subject: [PATCH] fix: container has runAsNonRoot and image will run as root

---
 config/manager/manager.yaml                        | 2 +-
 deploy/helm/nfd-operator/templates/deployment.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/config/manager/manager.yaml b/config/manager/manager.yaml
index dda4f84e..35c69472 100644
--- a/config/manager/manager.yaml
+++ b/config/manager/manager.yaml
@@ -26,8 +26,8 @@ spec:
       containers:
         - name: manager
           securityContext:
+            runAsUser: 65534
             readOnlyRootFilesystem: true
-            runAsNonRoot: true
             seccompProfile:
               type: RuntimeDefault
             allowPrivilegeEscalation: false
diff --git a/deploy/helm/nfd-operator/templates/deployment.yaml b/deploy/helm/nfd-operator/templates/deployment.yaml
index 8ffdcef0..6e011db7 100644
--- a/deploy/helm/nfd-operator/templates/deployment.yaml
+++ b/deploy/helm/nfd-operator/templates/deployment.yaml
@@ -75,7 +75,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
-          runAsNonRoot: true
+          runAsUser: 65534
           seccompProfile:
             type: RuntimeDefault
       terminationGracePeriodSeconds: 10