Skip to content

kube: use native seccompProfile fields#29159

Open
jiwahn wants to merge 1 commit into
podman-container-tools:mainfrom
jiwahn:fix-kube-seccomp-profile
Open

kube: use native seccompProfile fields#29159
jiwahn wants to merge 1 commit into
podman-container-tools:mainfrom
jiwahn:fix-kube-seccomp-profile

Conversation

@jiwahn

@jiwahn jiwahn commented Jul 9, 2026

Copy link
Copy Markdown
Contributor

Fixes: #27501

Checklist

Ensure you have completed the following checklist for your pull request to be reviewed:

  • Certify you wrote the patch or otherwise have the right to pass it on as an open-source patch by signing all
    commits. (git commit -s). (If needed, use git commit -s --amend). The author email must match
    the sign-off email address. See CONTRIBUTING.md
    for more information.
  • Referenced issues using Fixes: #00000 in commit message (if applicable)
  • Tests have been added/updated (or no tests are needed)
  • Documentation has been updated (or no documentation changes are needed)
  • All commits pass make validatepr (format/lint checks)
  • Release note entered in the section below (or None if no user-facing changes)

Does this PR introduce a user-facing change?

Podman kube play now uses Kubernetes securityContext.seccompProfile fields for seccomp configuration instead of the deprecated Kubernetes seccomp annotations.

Description

Instead of using the deprecated seccomp annotations for seccomp configuration, this now uses the native securityContext.seccompProfile field. Removed seccomp.go because annotations no longer need to be parsed before generating the spec. Unit tests have also been added.

@jiwahn jiwahn force-pushed the fix-kube-seccomp-profile branch from 64aea2a to e7b1589 Compare July 9, 2026 12:53
@jiwahn jiwahn marked this pull request as draft July 9, 2026 14:02
Fixes: podman-container-tools#27501
Signed-off-by: Jiwoo Ahn <ikwydls1314@gmail.com>
@jiwahn jiwahn force-pushed the fix-kube-seccomp-profile branch from e7b1589 to 8833cd8 Compare July 9, 2026 14:55
@jiwahn jiwahn marked this pull request as ready for review July 9, 2026 14:56
@TomSweeneyRedHat

Copy link
Copy Markdown
Contributor

@lsm5 PTAL

@TomSweeneyRedHat

Copy link
Copy Markdown
Contributor

The changes look good to me in general

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

seccomp deprecations noticed with golangci-lint 2.6.0

2 participants