Apply suggestions from code review

Co-authored-by: Jan Waś <[email protected]>
trinodb · May 22, 2024 · 5ca416c · 5ca416c
1 parent c51a86d
commit 5ca416c
Showing 1 changed file with 5 additions and 3 deletions.
diff --git a/charts/trino/values.yaml b/charts/trino/values.yaml
@@ -267,11 +267,13 @@ securityContext:
   runAsUser: 1000
   runAsGroup: 1000
 
-# -- SecurityContext configuration for containers
+# -- [Container security context](https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container) configuration.
 containerSecurityContext:
-  allowPrivilegeEscalation: false  #  Control whether a process can gain more privileges than its parent process.
+  # -- Control whether a process can gain more privileges than its parent process.
+  allowPrivilegeEscalation: false  
   capabilities:
-    drop:  # List of Linux kernel capabilities that are dropped from every container. Valid values are listed at https://man7.org/linux/man-pages/man7/capabilities.7.html Ensure to remove the "CAP_" prefix which the kernel attaches to the names of permissions.
+    # -- A list of the Linux kernel capabilities that are dropped from every container. Valid values are listed at https://man7.org/linux/man-pages/man7/capabilities.7.html Ensure to remove the "CAP_" prefix which the kernel attaches to the names of permissions.
+    drop:
       - ALL
 
 shareProcessNamespace: