"description":"the user id that runs the first process in the container; see http://releases.k8s.io/HEAD/docs/design/security_context.md#security-context"
},
"runAsNonRoot":{
"type":"boolean",
"description":"indicates the container must be run as a non-root user either by specifying the runAsUser or in the image specification"
@@ -2030,6 +2030,11 @@ type SecurityContext struct {
// RunAsUser is the UID to run the entrypoint of the container process.
RunAsUser*int64`json:"runAsUser,omitempty" description:"the user id that runs the first process in the container; see http://releases.k8s.io/HEAD/docs/design/security_context.md#security-context"`
// RunAsNonRoot indicates that the container should be run as a non-root user. If the RunAsUser
// field is not explicitly set then the kubelet may check the image for a specified user or
// perform defaulting to specify a user.
RunAsNonRootbool`json:"runAsNonRoot,omitempty" description:"indicates the container must be run as a non-root user either by specifying the runAsUser or in the image specification"`
}
// SELinuxOptions are the labels to be applied to the container