Helm Chart
Definition
A Helm Chart is a package manager for Kubernetes that allows users to define, install, and manage applications within a Kubernetes cluster. It encapsulates Kubernetes resources and configurations into a single package, enabling easy deployment and version management. Helm Charts facilitate the sharing and reuse of Kubernetes applications by providing a standardized format for application deployment.
Secure Settings Example
apiVersion: v2
name: secure-app
version: 1.0.0
spec:
template:
spec:
containers:
- name: secure-container
image: secure-image:latest
securityContext:
runAsNonRoot: true
readOnlyRootFilesystem: true
capabilities:
drop:
- ALL
resources:
limits:
memory: "256Mi"
cpu: "500m"
requests:
memory: "128Mi"
cpu: "250m"
Insecure Settings Example
apiVersion: v2
name: insecure-app
version: 1.0.0
spec:
template:
spec:
containers:
- name: insecure-container
image: insecure-image:latest
securityContext:
runAsNonRoot: false
readOnlyRootFilesystem: false
capabilities:
add:
- ALL
resources:
limits:
memory: "1024Mi"
cpu: "1000m"
requests:
memory: "512Mi"
cpu: "500m"