Run the controller in non-privileged mode #1050
Comments
|
I have the same question |
|
Hi @mauriciopoppe, thanks for bringing here. Yes, it does not need to run as privileged, will raise a PR and mark in the next release. |
|
The latest version 1.5.8 has the updated the security context. |
|
/close |
|
@mskanth972: Closing this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I saw these lines in the controller deployment
aws-efs-csi-driver/deploy/kubernetes/base/controller-deployment.yaml
Lines 36 to 37 in e914558
Does it need to run as privileged? From my understanding the node plugin is the one that might be doing format/mount which are privileged storage operations but the controller would only be making cloud requests. Could we remove it safely?
The text was updated successfully, but these errors were encountered: