-
Bug
-
Resolution: Unresolved
-
Undefined
-
None
-
Pipelines 1.18.0
-
False
-
None
-
False
-
-
Description of problem:
In the 4.19 cluster with the 1.18 Pipeline operator installed. Pipelines added by the operator in the Openshift namespace fail to start.
Prerequisites (if any, like setup, operators/versions):
Steps to Reproduce
- Install 1.18 Pipeline operator on the 4.19 cluster
- Navigate to Import from the git form and enter the Git URL https://github.com/sclorg/nodejs-ex.git
- Select build option as a Pipeline and create
- Navigate to Pipelines list page
Actual results:
The pipeline fails as soon as it starts with error
pods "golang-ex-git-99wg3h-fetch-repository-pod" is forbidden: violates PodSecurity "restricted:latest": unrestricted capabilities (containers "prepare", "place-scripts", "working-dir-initializer", "step-prepare-and-run" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or containers "prepare", "place-scripts", "working-dir-initializer" must set securityContext.runAsNonRoot=true), seccompProfile (pod or containers "prepare", "place-scripts", "working-dir-initializer", "step-prepare-and-run" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
Expected results:
The pipeline should run successfully
viraj@redhat.com please add a component to this issue