PodSecurity test: update registry from k8s.gcr.io to registry.k8s.io

2025-07-20 10:20:51 +00:00 · 2023-02-10 11:02:42 +08:00 · 2023-02-10 11:02:42 +08:00 · 51089767a6
commit 51089767a6
parent b2f8c8f00d
2934 changed files with 5868 additions and 5868 deletions
--- a/staging/src/k8s.io/pod-security-admission/test/fixtures.go
+++ b/staging/src/k8s.io/pod-security-admission/test/fixtures.go
@ -60,8 +60,8 @@ func init() {
 	// Define minimal valid baseline pod.
 	// This must remain valid for all versions.
 	baseline_1_0 := &corev1.Pod{Spec: corev1.PodSpec{
-		InitContainers: []corev1.Container{{Name: "initcontainer1", Image: "k8s.gcr.io/pause"}},
+		InitContainers: []corev1.Container{{Name: "initcontainer1", Image: "registry.k8s.io/pause"}},
-		Containers:     []corev1.Container{{Name: "container1", Image: "k8s.gcr.io/pause"}}}}
+		Containers:     []corev1.Container{{Name: "container1", Image: "registry.k8s.io/pause"}}}}
 	minimalValidPods[api.LevelBaseline][api.MajorMinorVersion(1, 0)] = baseline_1_0
 	//
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/apparmorprofile0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/apparmorprofile0.yaml
@ -6,8 +6,8 @@ metadata:
  name: apparmorprofile0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/apparmorprofile1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/apparmorprofile1.yaml
@ -6,8 +6,8 @@ metadata:
  name: apparmorprofile1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/capabilities_baseline0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/capabilities_baseline0.yaml
@ -4,14 +4,14 @@ metadata:
  name: capabilities_baseline0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities:
        add:
        - NET_RAW
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/capabilities_baseline1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/capabilities_baseline1.yaml
@ -4,12 +4,12 @@ metadata:
  name: capabilities_baseline1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/capabilities_baseline2.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/capabilities_baseline2.yaml
@ -4,14 +4,14 @@ metadata:
  name: capabilities_baseline2
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities:
        add:
        - chown
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/capabilities_baseline3.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/capabilities_baseline3.yaml
@ -4,14 +4,14 @@ metadata:
  name: capabilities_baseline3
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities:
        add:
        - CAP_CHOWN
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostnamespaces0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostnamespaces0.yaml
@ -4,9 +4,9 @@ metadata:
  name: hostnamespaces0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  hostIPC: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostnamespaces1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostnamespaces1.yaml
@ -4,9 +4,9 @@ metadata:
  name: hostnamespaces1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  hostNetwork: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostnamespaces2.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostnamespaces2.yaml
@ -4,9 +4,9 @@ metadata:
  name: hostnamespaces2
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  hostPID: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostpathvolumes0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostpathvolumes0.yaml
@ -4,10 +4,10 @@ metadata:
  name: hostpathvolumes0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
  volumes:
  - emptyDir: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostpathvolumes1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostpathvolumes1.yaml
@ -4,10 +4,10 @@ metadata:
  name: hostpathvolumes1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
  volumes:
  - hostPath:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostports0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostports0.yaml
@ -4,11 +4,11 @@ metadata:
  name: hostports0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    ports:
    - containerPort: 12345
      hostPort: 12345
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostports1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostports1.yaml
@ -4,10 +4,10 @@ metadata:
  name: hostports1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    ports:
    - containerPort: 12346
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostports2.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/hostports2.yaml
@ -4,14 +4,14 @@ metadata:
  name: hostports2
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    ports:
    - containerPort: 12345
      hostPort: 12345
    - containerPort: 12347
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    ports:
    - containerPort: 12346
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/privileged0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/privileged0.yaml
@ -4,12 +4,12 @@ metadata:
  name: privileged0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      privileged: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext: {}
  securityContext: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/privileged1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/privileged1.yaml
@ -4,11 +4,11 @@ metadata:
  name: privileged1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      privileged: true
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/procmount0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/procmount0.yaml
@ -4,12 +4,12 @@ metadata:
  name: procmount0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      procMount: Unmasked
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext: {}
  securityContext: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/procmount1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/procmount1.yaml
@ -4,11 +4,11 @@ metadata:
  name: procmount1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      procMount: Unmasked
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/seccompprofile_baseline0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/seccompprofile_baseline0.yaml
@ -6,8 +6,8 @@ metadata:
  name: seccompprofile_baseline0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/seccompprofile_baseline1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/seccompprofile_baseline1.yaml
@ -6,8 +6,8 @@ metadata:
  name: seccompprofile_baseline1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/seccompprofile_baseline2.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/seccompprofile_baseline2.yaml
@ -6,8 +6,8 @@ metadata:
  name: seccompprofile_baseline2
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/selinuxoptions0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/selinuxoptions0.yaml
@ -4,12 +4,12 @@ metadata:
  name: selinuxoptions0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      seLinuxOptions: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/selinuxoptions1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/selinuxoptions1.yaml
@ -4,13 +4,13 @@ metadata:
  name: selinuxoptions1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      seLinuxOptions:
        type: somevalue
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/selinuxoptions2.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/selinuxoptions2.yaml
@ -4,12 +4,12 @@ metadata:
  name: selinuxoptions2
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      seLinuxOptions: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/selinuxoptions3.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/selinuxoptions3.yaml
@ -4,12 +4,12 @@ metadata:
  name: selinuxoptions3
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      seLinuxOptions: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/selinuxoptions4.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/selinuxoptions4.yaml
@ -4,12 +4,12 @@ metadata:
  name: selinuxoptions4
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      seLinuxOptions: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/sysctls0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/sysctls0.yaml
@ -4,10 +4,10 @@ metadata:
  name: sysctls0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
  securityContext:
    sysctls:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/windowshostprocess0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/windowshostprocess0.yaml
@ -4,13 +4,13 @@ metadata:
  name: windowshostprocess0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      windowsOptions: {}
  hostNetwork: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      windowsOptions: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/windowshostprocess1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/fail/windowshostprocess1.yaml
@ -4,14 +4,14 @@ metadata:
  name: windowshostprocess1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      windowsOptions:
        hostProcess: true
  hostNetwork: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      windowsOptions:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/apparmorprofile0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/apparmorprofile0.yaml
@ -6,8 +6,8 @@ metadata:
  name: apparmorprofile0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/base.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/base.yaml
@ -4,8 +4,8 @@ metadata:
  name: base
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/capabilities_baseline0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/capabilities_baseline0.yaml
@ -4,7 +4,7 @@ metadata:
  name: capabilities_baseline0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities:
@ -23,7 +23,7 @@ spec:
        - SETUID
        - SYS_CHROOT
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/hostports0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/hostports0.yaml
@ -4,12 +4,12 @@ metadata:
  name: hostports0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    ports:
    - containerPort: 12345
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    ports:
    - containerPort: 12346
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/privileged0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/privileged0.yaml
@ -4,12 +4,12 @@ metadata:
  name: privileged0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      privileged: false
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      privileged: false
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/procmount0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/procmount0.yaml
@ -4,12 +4,12 @@ metadata:
  name: procmount0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      procMount: Default
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      procMount: Default
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/seccompprofile_baseline0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/seccompprofile_baseline0.yaml
@ -7,8 +7,8 @@ metadata:
  name: seccompprofile_baseline0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/selinuxoptions0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/selinuxoptions0.yaml
@ -4,11 +4,11 @@ metadata:
  name: selinuxoptions0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/selinuxoptions1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/selinuxoptions1.yaml
@ -4,14 +4,14 @@ metadata:
  name: selinuxoptions1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      seLinuxOptions:
        level: somevalue
        type: container_init_t
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/sysctls0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/sysctls0.yaml
@ -4,9 +4,9 @@ metadata:
  name: sysctls0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
  securityContext: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/sysctls1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.0/pass/sysctls1.yaml
@ -4,10 +4,10 @@ metadata:
  name: sysctls1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
  securityContext:
    sysctls:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/apparmorprofile0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/apparmorprofile0.yaml
@ -6,8 +6,8 @@ metadata:
  name: apparmorprofile0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/apparmorprofile1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/apparmorprofile1.yaml
@ -6,8 +6,8 @@ metadata:
  name: apparmorprofile1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/capabilities_baseline0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/capabilities_baseline0.yaml
@ -4,14 +4,14 @@ metadata:
  name: capabilities_baseline0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities:
        add:
        - NET_RAW
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/capabilities_baseline1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/capabilities_baseline1.yaml
@ -4,12 +4,12 @@ metadata:
  name: capabilities_baseline1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/capabilities_baseline2.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/capabilities_baseline2.yaml
@ -4,14 +4,14 @@ metadata:
  name: capabilities_baseline2
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities:
        add:
        - chown
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/capabilities_baseline3.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/capabilities_baseline3.yaml
@ -4,14 +4,14 @@ metadata:
  name: capabilities_baseline3
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities:
        add:
        - CAP_CHOWN
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostnamespaces0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostnamespaces0.yaml
@ -4,9 +4,9 @@ metadata:
  name: hostnamespaces0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  hostIPC: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostnamespaces1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostnamespaces1.yaml
@ -4,9 +4,9 @@ metadata:
  name: hostnamespaces1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  hostNetwork: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostnamespaces2.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostnamespaces2.yaml
@ -4,9 +4,9 @@ metadata:
  name: hostnamespaces2
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  hostPID: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostpathvolumes0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostpathvolumes0.yaml
@ -4,10 +4,10 @@ metadata:
  name: hostpathvolumes0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
  volumes:
  - emptyDir: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostpathvolumes1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostpathvolumes1.yaml
@ -4,10 +4,10 @@ metadata:
  name: hostpathvolumes1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
  volumes:
  - hostPath:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostports0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostports0.yaml
@ -4,11 +4,11 @@ metadata:
  name: hostports0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    ports:
    - containerPort: 12345
      hostPort: 12345
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostports1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostports1.yaml
@ -4,10 +4,10 @@ metadata:
  name: hostports1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    ports:
    - containerPort: 12346
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostports2.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/hostports2.yaml
@ -4,14 +4,14 @@ metadata:
  name: hostports2
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    ports:
    - containerPort: 12345
      hostPort: 12345
    - containerPort: 12347
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    ports:
    - containerPort: 12346
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/privileged0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/privileged0.yaml
@ -4,12 +4,12 @@ metadata:
  name: privileged0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      privileged: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext: {}
  securityContext: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/privileged1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/privileged1.yaml
@ -4,11 +4,11 @@ metadata:
  name: privileged1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      privileged: true
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/procmount0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/procmount0.yaml
@ -4,12 +4,12 @@ metadata:
  name: procmount0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      procMount: Unmasked
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext: {}
  securityContext: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/procmount1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/procmount1.yaml
@ -4,11 +4,11 @@ metadata:
  name: procmount1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      procMount: Unmasked
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/seccompprofile_baseline0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/seccompprofile_baseline0.yaml
@ -6,8 +6,8 @@ metadata:
  name: seccompprofile_baseline0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/seccompprofile_baseline1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/seccompprofile_baseline1.yaml
@ -6,8 +6,8 @@ metadata:
  name: seccompprofile_baseline1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/seccompprofile_baseline2.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/seccompprofile_baseline2.yaml
@ -6,8 +6,8 @@ metadata:
  name: seccompprofile_baseline2
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/selinuxoptions0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/selinuxoptions0.yaml
@ -4,12 +4,12 @@ metadata:
  name: selinuxoptions0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      seLinuxOptions: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/selinuxoptions1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/selinuxoptions1.yaml
@ -4,13 +4,13 @@ metadata:
  name: selinuxoptions1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      seLinuxOptions:
        type: somevalue
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/selinuxoptions2.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/selinuxoptions2.yaml
@ -4,12 +4,12 @@ metadata:
  name: selinuxoptions2
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      seLinuxOptions: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/selinuxoptions3.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/selinuxoptions3.yaml
@ -4,12 +4,12 @@ metadata:
  name: selinuxoptions3
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      seLinuxOptions: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/selinuxoptions4.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/selinuxoptions4.yaml
@ -4,12 +4,12 @@ metadata:
  name: selinuxoptions4
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      seLinuxOptions: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/sysctls0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/sysctls0.yaml
@ -4,10 +4,10 @@ metadata:
  name: sysctls0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
  securityContext:
    sysctls:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/windowshostprocess0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/windowshostprocess0.yaml
@ -4,13 +4,13 @@ metadata:
  name: windowshostprocess0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      windowsOptions: {}
  hostNetwork: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      windowsOptions: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/windowshostprocess1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/fail/windowshostprocess1.yaml
@ -4,14 +4,14 @@ metadata:
  name: windowshostprocess1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      windowsOptions:
        hostProcess: true
  hostNetwork: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      windowsOptions:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/apparmorprofile0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/apparmorprofile0.yaml
@ -6,8 +6,8 @@ metadata:
  name: apparmorprofile0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/base.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/base.yaml
@ -4,8 +4,8 @@ metadata:
  name: base
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/capabilities_baseline0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/capabilities_baseline0.yaml
@ -4,7 +4,7 @@ metadata:
  name: capabilities_baseline0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities:
@ -23,7 +23,7 @@ spec:
        - SETUID
        - SYS_CHROOT
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/hostports0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/hostports0.yaml
@ -4,12 +4,12 @@ metadata:
  name: hostports0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    ports:
    - containerPort: 12345
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    ports:
    - containerPort: 12346
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/privileged0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/privileged0.yaml
@ -4,12 +4,12 @@ metadata:
  name: privileged0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      privileged: false
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      privileged: false
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/procmount0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/procmount0.yaml
@ -4,12 +4,12 @@ metadata:
  name: procmount0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      procMount: Default
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      procMount: Default
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/seccompprofile_baseline0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/seccompprofile_baseline0.yaml
@ -7,8 +7,8 @@ metadata:
  name: seccompprofile_baseline0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/selinuxoptions0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/selinuxoptions0.yaml
@ -4,11 +4,11 @@ metadata:
  name: selinuxoptions0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/selinuxoptions1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/selinuxoptions1.yaml
@ -4,14 +4,14 @@ metadata:
  name: selinuxoptions1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      seLinuxOptions:
        level: somevalue
        type: container_init_t
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      seLinuxOptions:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/sysctls0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/sysctls0.yaml
@ -4,9 +4,9 @@ metadata:
  name: sysctls0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
  securityContext: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/sysctls1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.1/pass/sysctls1.yaml
@ -4,10 +4,10 @@ metadata:
  name: sysctls1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
  securityContext:
    sysctls:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/apparmorprofile0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/apparmorprofile0.yaml
@ -6,8 +6,8 @@ metadata:
  name: apparmorprofile0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/apparmorprofile1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/apparmorprofile1.yaml
@ -6,8 +6,8 @@ metadata:
  name: apparmorprofile1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/capabilities_baseline0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/capabilities_baseline0.yaml
@ -4,14 +4,14 @@ metadata:
  name: capabilities_baseline0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities:
        add:
        - NET_RAW
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/capabilities_baseline1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/capabilities_baseline1.yaml
@ -4,12 +4,12 @@ metadata:
  name: capabilities_baseline1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/capabilities_baseline2.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/capabilities_baseline2.yaml
@ -4,14 +4,14 @@ metadata:
  name: capabilities_baseline2
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities:
        add:
        - chown
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/capabilities_baseline3.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/capabilities_baseline3.yaml
@ -4,14 +4,14 @@ metadata:
  name: capabilities_baseline3
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      capabilities:
        add:
        - CAP_CHOWN
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      capabilities: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostnamespaces0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostnamespaces0.yaml
@ -4,9 +4,9 @@ metadata:
  name: hostnamespaces0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  hostIPC: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostnamespaces1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostnamespaces1.yaml
@ -4,9 +4,9 @@ metadata:
  name: hostnamespaces1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  hostNetwork: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostnamespaces2.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostnamespaces2.yaml
@ -4,9 +4,9 @@ metadata:
  name: hostnamespaces2
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  hostPID: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostpathvolumes0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostpathvolumes0.yaml
@ -4,10 +4,10 @@ metadata:
  name: hostpathvolumes0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
  volumes:
  - emptyDir: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostpathvolumes1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostpathvolumes1.yaml
@ -4,10 +4,10 @@ metadata:
  name: hostpathvolumes1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
  volumes:
  - hostPath:
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostports0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostports0.yaml
@ -4,11 +4,11 @@ metadata:
  name: hostports0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    ports:
    - containerPort: 12345
      hostPort: 12345
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostports1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostports1.yaml
@ -4,10 +4,10 @@ metadata:
  name: hostports1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    ports:
    - containerPort: 12346
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostports2.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/hostports2.yaml
@ -4,14 +4,14 @@ metadata:
  name: hostports2
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    ports:
    - containerPort: 12345
      hostPort: 12345
    - containerPort: 12347
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    ports:
    - containerPort: 12346
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/privileged0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/privileged0.yaml
@ -4,12 +4,12 @@ metadata:
  name: privileged0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      privileged: true
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext: {}
  securityContext: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/privileged1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/privileged1.yaml
@ -4,11 +4,11 @@ metadata:
  name: privileged1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      privileged: true
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/procmount0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/procmount0.yaml
@ -4,12 +4,12 @@ metadata:
  name: procmount0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext:
      procMount: Unmasked
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext: {}
  securityContext: {}
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/procmount1.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/procmount1.yaml
@ -4,11 +4,11 @@ metadata:
  name: procmount1
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
    securityContext: {}
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
    securityContext:
      procMount: Unmasked
--- a/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/seccompprofile_baseline0.yaml
+++ b/staging/src/k8s.io/pod-security-admission/test/testdata/baseline/v1.10/fail/seccompprofile_baseline0.yaml
@ -6,8 +6,8 @@ metadata:
  name: seccompprofile_baseline0
 spec:
  containers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: container1
  initContainers:
-  - image: k8s.gcr.io/pause
+  - image: registry.k8s.io/pause
    name: initcontainer1
--- a/Show More
+++ b/Show More