Add calico/node as a trusted container.

It generally needs to run privileged.
This commit is contained in:
Mark Stemm 2017-09-20 18:25:11 -07:00
parent c4c5d2f585
commit e44ce9a8d3

View File

@ -630,7 +630,8 @@
container.image startswith sysdig/sysdig or
container.image startswith gcr.io/google_containers/hyperkube or
container.image startswith quay.io/coreos/flannel or
container.image startswith gcr.io/google_containers/kube-proxy)
container.image startswith gcr.io/google_containers/kube-proxy or
container.image startswith calico/node)
# These containers are ones that are known to spawn lots of
# shells. Generally, they are for systems where the container is used