Add readOnlyRootFilesystem and dropCapabilities to securityContext
Hi!
It is best practice to give Kubernetes workloads as few privileges and rights as possible.
So far this chart only includes allowPrivilegeEscalation: false
for the container security context.
To make the deployment more secure readOnlyRootFileSystem: true
and capabilities: drop: ["ALL"]
should be added.
I will create a MR to add this.