From 90a837f16db26f77535e4374e77d9ddf654ecb66 Mon Sep 17 00:00:00 2001
From: Kevin Conner <kev.conner@getupcloud.com>
Date: Tue, 7 May 2024 06:47:29 -0700
Subject: [PATCH] UD-1425: set the trivy security contest to run as non-root,
 preventing POP-302,POP-306

---
 charts/zora/templates/plugins/trivy.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/charts/zora/templates/plugins/trivy.yaml b/charts/zora/templates/plugins/trivy.yaml
index 22a2d497..62ac71da 100644
--- a/charts/zora/templates/plugins/trivy.yaml
+++ b/charts/zora/templates/plugins/trivy.yaml
@@ -27,6 +27,7 @@ spec:
   {{- end }}
   mountCustomChecksVolume: false
   securityContext:
+    runAsNonRoot: true
     allowPrivilegeEscalation: false
     privileged: false
   {{- with .Values.scan.plugins.trivy.envFrom }}