type ownerAndPermissions … func verifyPodSecurityContext(t *testing.T, pod *v1.Pod, wantRunAsUser, wantRunAsGroup int64, wantSupGroup []int64) { … } func verifyContainerSecurityContext(t *testing.T, container v1.Container, addCaps, dropCaps []v1.Capability, allowPrivielege *bool) { … } func verifyFilePermissions(t *testing.T, updatedFiles, wantFiles map[string]ownerAndPermissions) { … } func TestRunKubeAPIServerAsNonRoot(t *testing.T) { … } func TestRunKubeControllerManagerAsNonRoot(t *testing.T) { … } func TestRunKubeSchedulerAsNonRoot(t *testing.T) { … } func TestRunEtcdAsNonRoot(t *testing.T) { … }
Codebase Browser
kubernetes