[bitnami/postgresql-ha] metrics sidecar uses wrong security context #32951

RobertMiethanerByte · 2025-04-10T13:00:49Z

Name and Version

bitnami/postgresql-ha 15.3.12

What architecture are you using?

amd64

What steps will reproduce the bug?

Enforce Pod Security Standard "restricted" on the target namespace
Deploy helm chart with metrics -> enabled: true
Pods of the postgresql-ha StatefulSet are not created

Are you using any custom parameters or values?

No response

What is the expected behavior?

Pods are created

What do you see instead?

It seems like the template is using the wrong security context for the metricts side car (see postgresql/statefulset.yaml Line 497)

Instead of ContainerSecurityContext the PodSecurityContext is used.

Additional information

No response

RobertMiethanerByte added the tech-issues The user has a technical issue about an application label Apr 10, 2025

github-actions bot added the triage Triage is needed label Apr 10, 2025

github-actions bot assigned carrodher Apr 10, 2025

RobertMiethanerByte changed the title ~~[bitnami/postgresql-ha] metrics sidecar security context prevents pod creation with Pod Security Standard "Restricted"~~ [bitnami/postgresql-ha] metrics sidecar uses wrong security context Apr 10, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[bitnami/postgresql-ha] metrics sidecar uses wrong security context #32951

[bitnami/postgresql-ha] metrics sidecar uses wrong security context #32951

RobertMiethanerByte commented Apr 10, 2025

[bitnami/postgresql-ha] metrics sidecar uses wrong security context #32951

[bitnami/postgresql-ha] metrics sidecar uses wrong security context #32951

Comments

RobertMiethanerByte commented Apr 10, 2025

Name and Version

What architecture are you using?

What steps will reproduce the bug?

Are you using any custom parameters or values?

What is the expected behavior?

What do you see instead?

Additional information