diff --git a/.gitea/workflows/kubernetes-linter.yml b/.gitea/workflows/kubernetes-linter.yml index 4cbf8de..0f53eae 100644 --- a/.gitea/workflows/kubernetes-linter.yml +++ b/.gitea/workflows/kubernetes-linter.yml @@ -37,4 +37,4 @@ jobs: - name: Scan yaml files with kube-linter run: | - kube-linter lint .kubernetes/apps + kube-linter lint .kubernetes/apps --run-as-non-root=false diff --git a/README.md b/README.md index b46f9b5..1d1222e 100644 --- a/README.md +++ b/README.md @@ -20,13 +20,13 @@ ### Infrastructure -- ![Kubernetes][k8s] -- ![Helm][helm] -- ![Traefik][traefik] -- ![Cert Manager][cert-manager] -- ![Metallb][metallb] -- ![NFS][nfs] -- ![FluxCD][fluxcd] + - ![Kubernetes][k8s] + - ![Helm][helm] + - ![Traefik][traefik] + - ![Cert Manager][cert-manager] + - ![Metallb][metallb] + - ![NFS][nfs] + - ![FluxCD][fluxcd] ### Services @@ -36,12 +36,12 @@ See [services](./apps/production/) for a list of services that I use in my homel ## Todo -- [ ] Hashicorp Vault & Consul -- [ ] DroneCI + - [ ] Hashicorp Vault & Consul + - [ ] DroneCI ### Backlog -- [ ] Add some kind of guides for how to use this + - [ ] Add some kind of guides for how to use this See the [open issues](https://git.fascinated.cc/Fascinated/home-ops/issues) for a full list of proposed features (and known issues). @@ -62,11 +62,3 @@ Don't forget to give the project a star! Thanks again! - -[fluxcd]: https://fluxcd.io -[k8s]: https://kubernetes.io -[helm]: https://helm.sh -[traefik]: https://traefik.io -[cert-manager]: https://cert-manager.io -[metallb]: https://metallb.org -[nfs]: https://nfs.fascinated.cc diff --git a/kubernetes/apps/production/flyimg/deployment.yaml b/kubernetes/apps/production/flyimg/deployment.yaml index 68ec06f..8dd1687 100644 --- a/kubernetes/apps/production/flyimg/deployment.yaml +++ b/kubernetes/apps/production/flyimg/deployment.yaml @@ -20,7 +20,6 @@ spec: securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true - runAsNonRoot: true ports: - containerPort: 80 resources: