From 8def55bfe6b54fe6b4cf70b36085cd5bee4b4562 Mon Sep 17 00:00:00 2001
From: Dries De Peuter <dries@stenic.io>
Date: Sat, 11 Mar 2023 22:29:39 +0100
Subject: [PATCH] fix: Chart audit

---
 .../templates/tests/test-connection.yaml          | 15 ---------------
 charts/well-known/values.yaml                     | 12 ++++++------
 2 files changed, 6 insertions(+), 21 deletions(-)
 delete mode 100644 charts/well-known/templates/tests/test-connection.yaml

diff --git a/charts/well-known/templates/tests/test-connection.yaml b/charts/well-known/templates/tests/test-connection.yaml
deleted file mode 100644
index dffcd86..0000000
--- a/charts/well-known/templates/tests/test-connection.yaml
+++ /dev/null
@@ -1,15 +0,0 @@
-apiVersion: v1
-kind: Pod
-metadata:
-  name: "{{ include "well-known.fullname" . }}-test-connection"
-  labels:
-    {{- include "well-known.labels" . | nindent 4 }}
-  annotations:
-    "helm.sh/hook": test
-spec:
-  containers:
-    - name: wget
-      image: busybox
-      command: ['wget']
-      args: ['{{ include "well-known.fullname" . }}:{{ .Values.service.port }}']
-  restartPolicy: Never
diff --git a/charts/well-known/values.yaml b/charts/well-known/values.yaml
index 4f4d49d..f7de1f7 100644
--- a/charts/well-known/values.yaml
+++ b/charts/well-known/values.yaml
@@ -54,12 +54,12 @@ podAnnotations: {}
 podSecurityContext: {}
   # fsGroup: 2000
 
-securityContext: {}
-  # capabilities:
-  #   drop:
-  #   - ALL
-  # readOnlyRootFilesystem: true
-  # runAsNonRoot: true
+securityContext:
+  capabilities:
+    drop:
+    - ALL
+  readOnlyRootFilesystem: true
+  runAsNonRoot: true
   # runAsUser: 1000
 
 service: