From 33585b129c5aaa368d340e1803b99edb94326431 Mon Sep 17 00:00:00 2001
From: Dominik Rosiek <drosiek@sumologic.com>
Date: Mon, 28 Feb 2022 09:37:00 +0100
Subject: [PATCH 1/3] feat(fluent-bit): drop all capabilities for container

Signed-off-by: Dominik Rosiek <drosiek@sumologic.com>
---
 deploy/helm/sumologic/values.yaml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/deploy/helm/sumologic/values.yaml b/deploy/helm/sumologic/values.yaml
index 3adf6df850..8d6140d7ec 100644
--- a/deploy/helm/sumologic/values.yaml
+++ b/deploy/helm/sumologic/values.yaml
@@ -974,8 +974,11 @@ fluent-bit:
   ## Add custom pod annotations to fluent-bit daemonset pods
   podAnnotations: {}
 
+  securityContext:
+    capabilities:
+      drop:
+      - ALL
   ## Set securityContext of fluent-bit daemonset containers as privileged for running in Openshift
-  # securityContext:
   #   privileged: true
 
   env:

From 8c0910e0cbfad6866fb11391189d35e99c25afda Mon Sep 17 00:00:00 2001
From: Dominik Rosiek <drosiek@sumologic.com>
Date: Mon, 28 Feb 2022 09:46:19 +0100
Subject: [PATCH 2/3] docs(changelog): update

Signed-off-by: Dominik Rosiek <drosiek@sumologic.com>
---
 CHANGELOG.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 5ca2ead390..9c15d56035 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -19,6 +19,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 - chore: bump sumo ot distro to 0.0.50-beta.0 [#2127][#2127]
 - feat(metrics): drop container label for non-container kube state metrics [#2144][#2144]
+- feat(fluent-bit): drop all capabilities for container [#2151][#2151]
 
 ### Fixed
 
@@ -30,6 +31,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 [#2134]: https://github.com/SumoLogic/sumologic-kubernetes-collection/pull/2134
 [#2143]: https://github.com/SumoLogic/sumologic-kubernetes-collection/pull/2143
 [#2144]: https://github.com/SumoLogic/sumologic-kubernetes-collection/pull/2144
+[#2151]: https://github.com/SumoLogic/sumologic-kubernetes-collection/pull/2151
 
 ## [v2.5.2]
 

From 52ba8f7dadcb490df51f9cf370da0c0bd2184a23 Mon Sep 17 00:00:00 2001
From: Dominik Rosiek <drosiek@sumologic.com>
Date: Mon, 28 Feb 2022 10:36:58 +0100
Subject: [PATCH 3/3] fix(values): fix yamllint

Signed-off-by: Dominik Rosiek <drosiek@sumologic.com>
---
 deploy/helm/sumologic/values.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/deploy/helm/sumologic/values.yaml b/deploy/helm/sumologic/values.yaml
index 8d6140d7ec..2fc48ff372 100644
--- a/deploy/helm/sumologic/values.yaml
+++ b/deploy/helm/sumologic/values.yaml
@@ -977,7 +977,7 @@ fluent-bit:
   securityContext:
     capabilities:
       drop:
-      - ALL
+        - ALL
   ## Set securityContext of fluent-bit daemonset containers as privileged for running in Openshift
   #   privileged: true