Merge pull request #311 from snyk/fix/openshift-uid

chore: relax checks on runAsUser and runAsGroup

Author: ivanstanev

test/helpers/deployment.ts

@@ -42,8 +42,16 @@ export function validateSecureConfiguration(test: tap, deployment: V1Deployment)
   tap.ok(securityContext.allowPrivilegeEscalation === false, 'must explicitly set allowPrivilegeEscalation to false');
   tap.ok(securityContext.privileged === false, 'must explicitly set privileged to false');
   tap.ok(securityContext.runAsNonRoot === true, 'must explicitly set runAsNonRoot to true');
-  tap.ok(securityContext.runAsUser === 10001, 'must explicitly set runAsUser to 10001');
-  tap.ok(securityContext.runAsGroup === 10001, 'must explicitly set runAsGroup to 10001');
+  tap.ok(
+    securityContext.runAsUser !== undefined &&
+      securityContext.runAsUser >= 10001,
+    'must explicitly set runAsUser to be 10001 or greater',
+  );
+  tap.ok(
+    securityContext.runAsGroup !== undefined &&
+      securityContext.runAsGroup >= 10001,
+    'must explicitly set runAsGroup to be 10001 or greater',
+  );
 }
 
 export function validateVolumeMounts(test: tap, deployment: V1Deployment) {