From 845ddeceda34d59a160718ea8390046674b7d6ab Mon Sep 17 00:00:00 2001
From: facchettos <facchettos@gmail.com>
Date: Thu, 22 Feb 2024 15:55:18 +0100
Subject: [PATCH 1/2] added defaults for k8s to run the syncer as root, to
 follow k3s

---
 charts/k8s/values.yaml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/charts/k8s/values.yaml b/charts/k8s/values.yaml
index 1e9c15547..ed5dd2736 100644
--- a/charts/k8s/values.yaml
+++ b/charts/k8s/values.yaml
@@ -195,7 +195,10 @@ syncer:
   kubeConfigContextName: "my-vcluster"
   # Security context configuration
   securityContext: {}
-  podSecurityContext: {}
+  podSecurityContext:
+    allowPrivilegeEscalation: false
+    runAsUser: 0
+    runAsGroup: 0
   serviceAnnotations: {}
   # Storage settings for the vcluster
   storage:

From 77defcb0414e6109b9be666a3594b2aed7af36c1 Mon Sep 17 00:00:00 2001
From: facchettos <facchettos@gmail.com>
Date: Tue, 27 Feb 2024 13:12:20 +0100
Subject: [PATCH 2/2] added eks default

---
 charts/eks/values.yaml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/charts/eks/values.yaml b/charts/eks/values.yaml
index f88307510..dd20e9f47 100644
--- a/charts/eks/values.yaml
+++ b/charts/eks/values.yaml
@@ -189,7 +189,10 @@ syncer:
   kubeConfigContextName: "my-vcluster"
   # Security context configuration
   securityContext: {}
-  podSecurityContext: {}
+  podSecurityContext:
+    allowPrivilegeEscalation: false
+    runAsUser: 0
+    runAsGroup: 0
   serviceAnnotations: {}
   # Storage settings for the vcluster
   storage: