From 5ca416cd6f15099a844fc3831c23dc791b79a962 Mon Sep 17 00:00:00 2001
From: Kohei Watanabe <littlewat.dev@gmail.com>
Date: Wed, 22 May 2024 21:21:38 +0900
Subject: [PATCH] Apply suggestions from code review
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Co-authored-by: Jan Waś <jan@was.net.pl>
---
 charts/trino/values.yaml | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/charts/trino/values.yaml b/charts/trino/values.yaml
index 04ddd57c..e5053982 100644
--- a/charts/trino/values.yaml
+++ b/charts/trino/values.yaml
@@ -267,11 +267,13 @@ securityContext:
   runAsUser: 1000
   runAsGroup: 1000
 
-# -- SecurityContext configuration for containers
+# -- [Container security context](https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container) configuration.
 containerSecurityContext:
-  allowPrivilegeEscalation: false  #  Control whether a process can gain more privileges than its parent process.
+  # -- Control whether a process can gain more privileges than its parent process.
+  allowPrivilegeEscalation: false  
   capabilities:
-    drop:  # List of Linux kernel capabilities that are dropped from every container. Valid values are listed at https://man7.org/linux/man-pages/man7/capabilities.7.html Ensure to remove the "CAP_" prefix which the kernel attaches to the names of permissions.
+    # -- A list of the Linux kernel capabilities that are dropped from every container. Valid values are listed at https://man7.org/linux/man-pages/man7/capabilities.7.html Ensure to remove the "CAP_" prefix which the kernel attaches to the names of permissions.
+    drop:
       - ALL
 
 shareProcessNamespace: