Configure seccomp profile for initContainer
Dynatrace Operator version 0.11.2+
The seccomp (secure computing mode) profile determines the system calls that a process in the initContainer can make. By default, the seccomp profile is not set. You can set the seccomp profile for the
initContainer in your DynaKube by using the
feature.dynatrace.com/init-container-seccomp-profile feature flag to one of the following values.
initContainerwill not have a seccomp profile set, and the default behavior of your container runtime will be used.
initContainerwill have the
Runtime/defaultseccomp profile added, which can help meet the requirements of the restricted
PodSecurityStandardfor your Kubernetes workloads.
1apiVersion: dynatrace.com/v1beta12kind: DynaKube3metadata:4 annotations:5 feature.dynatrace.com/init-container-seccomp-profile: "true"