From 0b67132e6dc9679bc3b58981f13d4ff25c80a052 Mon Sep 17 00:00:00 2001
From: Majid Azimi <s.azimigehraz@reply.de>
Date: Wed, 30 Jun 2021 14:12:34 +0200
Subject: [PATCH 1/2] enforce default container security policy

Signed-off-by: Majid Azimi <s.azimigehraz@reply.de>
---
 charts/jaeger-operator/templates/deployment.yaml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/charts/jaeger-operator/templates/deployment.yaml b/charts/jaeger-operator/templates/deployment.yaml
index 943b586d..8fc210bf 100644
--- a/charts/jaeger-operator/templates/deployment.yaml
+++ b/charts/jaeger-operator/templates/deployment.yaml
@@ -36,6 +36,11 @@ spec:
         - name: {{ include "jaeger-operator.fullname" . }}
           image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}"
           imagePullPolicy: {{ .Values.image.pullPolicy }}
+          securityContext:
+            runAsNonRoot: true
+            readOnlyRootFilesystem: true
+            privileged: false
+            allowPrivilegeEscalation: false
           ports:
           - containerPort: 8383
             name: metrics

From 3ecffb658508f39ba3b6ca46decb2e642c5fa1da Mon Sep 17 00:00:00 2001
From: Majid Azimi <s.azimigehraz@reply.de>
Date: Tue, 3 Aug 2021 10:22:55 +0200
Subject: [PATCH 2/2] Update jaeger-operator chart to 2.24.0

Signed-off-by: Majid Azimi <s.azimigehraz@reply.de>
---
 charts/jaeger-operator/Chart.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/jaeger-operator/Chart.yaml b/charts/jaeger-operator/Chart.yaml
index 9d8d6aa3..fb7db6ae 100644
--- a/charts/jaeger-operator/Chart.yaml
+++ b/charts/jaeger-operator/Chart.yaml
@@ -1,7 +1,7 @@
 apiVersion: v1
 description: jaeger-operator Helm chart for Kubernetes
 name: jaeger-operator
-version: 2.23.0
+version: 2.24.0
 appVersion: 1.24.0
 home: https://www.jaegertracing.io/
 icon: https://www.jaegertracing.io/img/jaeger-icon-reverse-color.svg