Codebase Browser
kubernetes
Go to App

kubernetes/staging/src/k8s.io/pod-security-admission/test/testdata/restricted/v1.17/fail/capabilities_baseline1.yaml 

apiVersion: v1
kind: Pod
metadata:
  name: capabilities_baseline1
spec:
  containers:
  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      allowPrivilegeEscalation: false
      capabilities: {}
  initContainers:
  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      allowPrivilegeEscalation: false
      capabilities:
        add:
        - NET_RAW
  securityContext:
    runAsNonRoot: true