eblume/blumeops
1
1
Fork 0
Code Issues Pull requests Projects Releases 83 Packages Wiki Activity Actions
blumeops/argocd/manifests/forgejo-runner
History
Erich Blume 924325ebd5 Fix DinD seccomp profile broken by RuntimeDefault rollout 
The pod-level RuntimeDefault seccomp profile (07e9c81) overrides the
DinD sidecar's privileged flag in newer Kubernetes versions, blocking
Docker daemon syscalls. Set Unconfined explicitly on the DinD container
while keeping RuntimeDefault on the runner container.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-29 17:09:57 -07:00
..
config.yaml Add kustomize images: and configMapGenerator: across services (#264) 2026-02-24 14:25:19 -08:00
daemon.json Add kustomize images: and configMapGenerator: across services (#264) 2026-02-24 14:25:19 -08:00
deployment.yaml Fix DinD seccomp profile broken by RuntimeDefault rollout 2026-03-29 17:09:57 -07:00
external-secret.yaml Move non-secret runner env vars to deployment spec (#181) 2026-02-13 10:29:23 -08:00
kustomization.yaml Add kustomize images: and configMapGenerator: across services (#264) 2026-02-24 14:25:19 -08:00
namespace.yaml Migrate Forgejo runner to Kubernetes with DinD (#60) 2026-01-25 19:56:17 -08:00