From 9d3be0a943e2e9c88d3d7b6de8855973ab6701d8 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 14 May 2026 08:48:19 +0000 Subject: [PATCH] chore(deps): update helm release coder-logstream-kube to v0.0.15 --- .../vendir/charts/coder-logstream-kube/Chart.yaml | 4 ++-- .../coder-logstream-kube/templates/service.yaml | 7 +++++++ .../vendir/charts/coder-logstream-kube/values.yaml | 12 ++++++++++-- third_party/vendir/vendir.lock.yml | 4 ++-- third_party/vendir/vendir.yml | 2 +- 5 files changed, 22 insertions(+), 7 deletions(-) diff --git a/third_party/vendir/charts/coder-logstream-kube/Chart.yaml b/third_party/vendir/charts/coder-logstream-kube/Chart.yaml index 06fdcf07e..a61d5cdfc 100644 --- a/third_party/vendir/charts/coder-logstream-kube/Chart.yaml +++ b/third_party/vendir/charts/coder-logstream-kube/Chart.yaml @@ -1,5 +1,5 @@ apiVersion: v2 -appVersion: v0.0.13 +appVersion: v0.0.15 description: Stream Kubernetes Pod events to the Coder startup logs home: https://github.com/coder/coder-logstream-kube icon: https://helm.coder.com/coder_logo_black.png @@ -15,4 +15,4 @@ name: coder-logstream-kube sources: - https://github.com/coder/coder-logstream-kube/tree/main type: application -version: v0.0.13 +version: v0.0.15 diff --git a/third_party/vendir/charts/coder-logstream-kube/templates/service.yaml b/third_party/vendir/charts/coder-logstream-kube/templates/service.yaml index c89a98a28..23473f55d 100644 --- a/third_party/vendir/charts/coder-logstream-kube/templates/service.yaml +++ b/third_party/vendir/charts/coder-logstream-kube/templates/service.yaml @@ -2,6 +2,9 @@ - apiGroups: [""] resources: ["pods", "events"] verbs: ["get", "watch", "list"] +- apiGroups: [""] + resources: ["secrets"] + verbs: ["get"] - apiGroups: ["apps"] resources: ["replicasets", "events"] verbs: ["get", "watch", "list"] @@ -98,6 +101,10 @@ spec: nodeSelector: {{- toYaml . | nindent 8 }} {{- end }} + {{- with .Values.podSecurityContext }} + podSecurityContext: + {{- toYaml . | nindent 8 }} + {{- end }} containers: - name: coder-logstream-kube image: "{{ .Values.image.repo }}:{{ .Values.image.tag | default .Chart.AppVersion }}" diff --git a/third_party/vendir/charts/coder-logstream-kube/values.yaml b/third_party/vendir/charts/coder-logstream-kube/values.yaml index 5a6d1b6b1..daa847fb6 100644 --- a/third_party/vendir/charts/coder-logstream-kube/values.yaml +++ b/third_party/vendir/charts/coder-logstream-kube/values.yaml @@ -92,8 +92,11 @@ labels: {} # securityContext -- Container-level security context # See: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ -securityContext: {} - # allowPrivilegeEscalation: false +securityContext: + runAsNonRoot: true + runAsUser: 65532 + runAsGroup: 65532 + allowPrivilegeEscalation: false # capabilities: # drop: # - ALL @@ -101,3 +104,8 @@ securityContext: {} # runAsNonRoot: true # seccompProfile: # type: RuntimeDefault + +podSecurityContext: {} +# Optional, only if your cluster requires group ownership for mounted volumes: +# podSecurityContext: +# fsGroup: 65532 \ No newline at end of file diff --git a/third_party/vendir/vendir.lock.yml b/third_party/vendir/vendir.lock.yml index 6c72c9649..4c8b5ae3d 100644 --- a/third_party/vendir/vendir.lock.yml +++ b/third_party/vendir/vendir.lock.yml @@ -44,8 +44,8 @@ directories: path: charts/coder - contents: - helmChart: - appVersion: v0.0.13 - version: v0.0.13 + appVersion: v0.0.15 + version: v0.0.15 path: . path: charts/coder-logstream-kube - contents: diff --git a/third_party/vendir/vendir.yml b/third_party/vendir/vendir.yml index 79478b78b..094264237 100644 --- a/third_party/vendir/vendir.yml +++ b/third_party/vendir/vendir.yml @@ -62,7 +62,7 @@ directories: - path: . helmChart: name: coder-logstream-kube - version: 0.0.13 + version: v0.0.15 repository: url: https://helm.coder.com/logstream-kube - path: charts/external-secrets