mirror of
https://github.com/kyverno/kyverno.git
synced 2025-04-08 10:04:25 +00:00
update documentation
This commit is contained in:
shivkumar dudhani
parent
0f7de18476
commit
c7b0fc86c1
1 changed files with 2 additions and 0 deletions
|
|
@ -71,7 +71,9 @@ A read-only root file system helps to enforce an immutable infrastrucutre strate
|
|||
|
||||
***Policy YAML***: [require_readonly_rootfilesystem.yaml](best_practices/require_readonly_rootfilesystem.yaml)
|
||||
|
||||
|
||||
# Additional Policies
|
||||
Additional policies list some policies that can also assist in maintaing kubernetes clusters.
|
||||
|
||||
## Assign Linux capabilities inside Pod
|
||||
Linux divides the privileges traditionally, associated with superuser into distinct units, known as capabilities, which can be independently enabled or disabled by listing them in `securityContext.capabilites`.
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue