hide security context & probes

omerap12 · omerap12 · commit 540db0c4b011 · 2025-09-23T08:11:00.000Z
Signed-off-by: Omer Aplatony &lt;omerap12@gmail.com&gt;
diff --git a/charts/vertical-pod-autoscaler/templates/admission-controller-deployment.yaml b/charts/vertical-pod-autoscaler/templates/admission-controller-deployment.yaml
@@ -32,10 +32,9 @@ spec:
         {{- toYaml . | nindent 8 }}
       {{- end }}
       serviceAccountName:  {{ include "vertical-pod-autoscaler.admissionController.fullname" . }}
-      {{- with .Values.admissionController.podSecurityContext }}
       securityContext:
-        {{- toYaml . | nindent 8 }}
-      {{- end }}
+        runAsNonRoot: true
+        runAsUser: 65534
       containers:
         - name: admission-controller
           image: {{ include "vertical-pod-autoscaler.admissionController.image" . }}
@@ -62,9 +61,20 @@ spec:
               name: prometheus
               protocol: TCP
           livenessProbe:
-            {{- toYaml .Values.admissionController.livenessProbe | nindent 12 }}
+            httpGet:
+              path: /health-check
+              port: prometheus
+              scheme: HTTP
+            initialDelaySeconds: 5
+            periodSeconds: 10
+            failureThreshold: 3
           readinessProbe:
-            {{- toYaml .Values.admissionController.readinessProbe | nindent 12 }}
+            httpGet:
+              path: /health-check
+              port: prometheus
+              scheme: HTTP
+            periodSeconds: 10
+            failureThreshold: 3
           volumeMounts:
             {{- toYaml .Values.admissionController.volumeMounts | nindent 12 }}
           {{- with .Values.admissionController.resources }}
diff --git a/charts/vertical-pod-autoscaler/values.yaml b/charts/vertical-pod-autoscaler/values.yaml
@@ -56,30 +56,6 @@ admissionController:
   # Additional args for the Admission Controller default container.
   extraArgs: []
 
-  # Security context for the Admission Controller pod
-  podSecurityContext:
-    runAsNonRoot: true
-    runAsUser: 65534
-
-  # Liveness probe configuration for the Admission Controller default container.
-  livenessProbe:
-    httpGet:
-      path: /health-check
-      port: prometheus
-      scheme: HTTP
-    initialDelaySeconds: 5
-    periodSeconds: 10
-    failureThreshold: 3
-
-  # Readiness probe configuration for the _Updater_ default container.
-  readinessProbe:
-    httpGet:
-      path: /health-check
-      port: prometheus
-      scheme: HTTP
-    periodSeconds: 10
-    failureThreshold: 3
-
   # Resources for the Admission Controller default container.
   resources:
     limits:
