File tree Expand file tree Collapse file tree 1 file changed +9
-2
lines changed Expand file tree Collapse file tree 1 file changed +9
-2
lines changed Original file line number Diff line number Diff line change @@ -87,9 +87,16 @@ Then make sure the Secret is linked with the Service-Account running the `TaskRu
8787This task includes enhanced security through user namespace isolation with the following key characteristics :
8888
8989
90- # ## UID Mapping Behavior
90+ # # UID Mapping Behavior
9191
92- When below annotations are applied, the container exhibits the following UID mapping behavior :
92+ When the following annotations are applied :
93+
94+ ` ` ` yaml
95+ io.kubernetes.cri-o.userns-mode: "auto"
96+ io.openshift.builder: "true"
97+ ` ` `
98+
99+ the container exhibits the following UID mapping behavior :
93100
94101- **Inside the container**: The process runs as UID 0 (root within the user namespace)
95102- **Outside the container**: The process runs as a non-zero UID on the host system
You can’t perform that action at this time.
0 commit comments