From e7d1d7c7c3401e883eca974345ead0323af14da9 Mon Sep 17 00:00:00 2001
From: Latch M <latch_mihaylov@homedepot.com>
Date: Thu, 12 Mar 2020 14:51:06 -0400
Subject: [PATCH] adding security context to kube-rbac-proxy

---
 jsonnet/kube-prometheus/kube-rbac-proxy/container.libsonnet | 1 +
 1 file changed, 1 insertion(+)

diff --git a/jsonnet/kube-prometheus/kube-rbac-proxy/container.libsonnet b/jsonnet/kube-prometheus/kube-rbac-proxy/container.libsonnet
index 8f70486c..c5934732 100644
--- a/jsonnet/kube-prometheus/kube-rbac-proxy/container.libsonnet
+++ b/jsonnet/kube-prometheus/kube-rbac-proxy/container.libsonnet
@@ -35,6 +35,7 @@ local containerPort = container.portsType;
         spec+: {
           containers+: [
             container.new(krp.config.kubeRbacProxy.name, krp.config.kubeRbacProxy.image) +
+            container.mixin.securityContext.withRunAsUser(65534) +	    
             container.withArgs([
               '--logtostderr',
               '--secure-listen-address=' + krp.config.kubeRbacProxy.secureListenAddress,