From 550f9d89b4980c45c15e3683e82e3093e23e9a7c Mon Sep 17 00:00:00 2001
From: Jim Bugwadia <jim@nirmata.com>
Date: Tue, 18 Aug 2020 21:44:11 -0700
Subject: [PATCH] update policy markdowns

---
 samples/DisallowNewCapabilities.md | 2 ++
 samples/DisallowRootUser.md        | 7 +++++++
 2 files changed, 9 insertions(+)

diff --git a/samples/DisallowNewCapabilities.md b/samples/DisallowNewCapabilities.md
index 683d0534f8..d237d5696e 100644
--- a/samples/DisallowNewCapabilities.md
+++ b/samples/DisallowNewCapabilities.md
@@ -15,6 +15,8 @@ apiVersion: kyverno.io/v1
 kind: ClusterPolicy
 metadata:
   name: disallow-new-capabilities
+  annotations:
+    pod-policies.kyverno.io/autogen-controllers: none
 spec:
   rules:
   - name: validate-add-capabilities
diff --git a/samples/DisallowRootUser.md b/samples/DisallowRootUser.md
index 3b09a786e1..7d5e991e97 100644
--- a/samples/DisallowRootUser.md
+++ b/samples/DisallowRootUser.md
@@ -28,8 +28,15 @@ spec:
       - spec:
           securityContext:
             runAsNonRoot: true
+      - spec:
+          securityContext:
+            runAsUser: ">0"
       - spec:
           containers:
           - securityContext:
               runAsNonRoot: true
+      - spec:
+          containers:
+          - securityContext:
+              runAsUser: ">0"
 ````