Add docker group (GID 999) to runner security context

2026-01-23 19:44:43 -08:00 · 2026-01-23 19:44:43 -08:00 · 4c249ff116
commit 4c249ff116
parent 4a3219648d
1 changed files with 7 additions and 1 deletions
--- a/argocd/manifests/forgejo-runner/deployment.yaml
+++ b/argocd/manifests/forgejo-runner/deployment.yaml
@ -58,8 +58,14 @@ spec:
              memory: "1Gi"
              cpu: "1000m"
          securityContext:
-            # Run as root to access Docker socket
+            # Run as root with docker group to access Docker socket
            runAsUser: 0
+            runAsGroup: 0
+      securityContext:
+        # Add docker group (GID 999 in minikube) for socket access
+        fsGroup: 999
+        supplementalGroups:
+          - 999
      volumes:
        - name: runner-data
          emptyDir: {}