diff --git a/charts/incubator/jenkins/Chart.yaml b/charts/incubator/jenkins/Chart.yaml index d0458925a4b..3349fa46d15 100644 --- a/charts/incubator/jenkins/Chart.yaml +++ b/charts/incubator/jenkins/Chart.yaml @@ -21,7 +21,7 @@ sources: - https://github.com/truecharts/charts/tree/master/charts/incubator/jenkins - https://hub.docker.com/r/jenkins/jenkins type: application -version: 0.0.3 +version: 0.1.0 annotations: truecharts.org/SCALE-support: "true" truecharts.org/catagories: | diff --git a/charts/incubator/jenkins/questions.yaml b/charts/incubator/jenkins/questions.yaml index 4d939a0152a..f581a1bb368 100644 --- a/charts/incubator/jenkins/questions.yaml +++ b/charts/incubator/jenkins/questions.yaml @@ -147,7 +147,7 @@ questions: label: "ReadOnly Root Filesystem" schema: type: boolean - default: true + default: false - variable: allowPrivilegeEscalation label: "Allow Privilege Escalation" schema: @@ -157,7 +157,7 @@ questions: label: "runAsNonRoot" schema: type: boolean - default: true + default: false # Include{securityContextAdvanced} # Include{podSecurityContextRoot} - variable: runAsUser @@ -165,13 +165,13 @@ questions: description: "The UserID of the user running the application" schema: type: int - default: 1000 + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int - default: 1000 + default: 0 - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." diff --git a/charts/incubator/jenkins/values.yaml b/charts/incubator/jenkins/values.yaml index 0ca42b2ee6a..27413bad321 100644 --- a/charts/incubator/jenkins/values.yaml +++ b/charts/incubator/jenkins/values.yaml @@ -4,10 +4,14 @@ image: tag: v2.362@sha256:6ead1a1da8711e3da9bbdbe95dc8c4cf72389a5c22ddaba13b94028fdbf5f425 podSecurityContext: - runAsGroup: 1000 - runAsUser: 1000 + runAsGroup: 0 + runAsUser: 0 fsGroup: 1000 +securityContext: + readOnlyRootFilesystem: false + runAsNonRoot: false + env: JENKINS_JAVA_OPTS: ""