Skip to content

[ko] Localize tutorials/security/seccomp.md#56376

Open
seokho-son wants to merge 1 commit into
kubernetes:mainfrom
seokho-son:main
Open

[ko] Localize tutorials/security/seccomp.md#56376
seokho-son wants to merge 1 commit into
kubernetes:mainfrom
seokho-son:main

Conversation

@seokho-son

Copy link
Copy Markdown
Member

Description

This PR localizes tutorials/security/seccomp.md into Korean.

This PR was written in part with the assistance of generative AI.
I have reviewed the changes myself and take full responsibility for the content.

Copilot AI review requested due to automatic review settings July 3, 2026 22:49
@kubernetes-prow kubernetes-prow Bot requested review from jihoon-seo and jongwooo July 3, 2026 22:49
@kubernetes-prow kubernetes-prow Bot added area/localization General issues or PRs related to localization size/XL Denotes a PR that changes 500-999 lines, ignoring generated files. language/ko Issues or PRs related to Korean language sig/docs Categorizes an issue or PR as relevant to SIG Docs. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. labels Jul 3, 2026

This comment was marked as off-topic.

@netlify

netlify Bot commented Jul 3, 2026

Copy link
Copy Markdown

Pull request preview available for checking

Built without sensitive environment variables

Name Link
🔨 Latest commit f2b7bc8
🔍 Latest deploy log https://app.netlify.com/projects/kubernetes-io-main-staging/deploys/6a4d4a22bb6df100085cbfc9
😎 Deploy Preview https://deploy-preview-56376--kubernetes-io-main-staging.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@wonyongg

wonyongg commented Jul 6, 2026

Copy link
Copy Markdown
Member

/assign

@wonyongg wonyongg left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@seokho-son

제안 수준의 사소한 리뷰 남겼습니다. 귀한 시간 내주셔서 감사드립니다.

Comment on lines +165 to +166
대부분의 컨테이너 런타임은 허용되거나 허용되지 않는 시스템 콜에 대해 합리적인
기본값 집합을 제공한다. 파드나 컨테이너의 시큐리티 컨텍스트에서 seccomp

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
대부분의 컨테이너 런타임은 허용되거나 허용되지 않는 시스템 콜에 대해 합리적인
기본값 집합을 제공한다. 파드나 컨테이너의 시큐리티 컨텍스트에서 seccomp
대부분의 컨테이너 런타임은 허용되거나 허용되지 않는 기본 시스템 콜에 대해 합리적인
구성을 제공한다. 파드나 컨테이너의 시큐리티 컨텍스트에서 seccomp

집합보다는 구성이란 표현으로 좀 더 자연스럽게 바꿀 수 있지 않을까 생각이 들었습니다.
원문을 살려 a set of를 집합으로 번역한다면 기본값 집합보다는 합리적인 집합을 제공한다.로 바꾸는 것이 어떨지 제안드립니다.

Copy link
Copy Markdown
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
대부분의 컨테이너 런타임은 허용되거나 허용되지 않는 시스템 콜에 대해 합리적인
기본값 집합을 제공한다. 파드나 컨테이너의 시큐리티 컨텍스트에서 seccomp
대부분의 컨테이너 런타임은 허용되거나 허용되지 않는 시스템 콜에 대해 합리적인
기본 구성을 제공한다. 파드나 컨테이너의 시큐리티 컨텍스트에서 seccomp

@wonyongg 이렇게 조정하면 어떨까요? :)

Copy link
Copy Markdown
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Most container runtimes provide a sane set of default syscalls that are allowed
or not.

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@seokho-son

자연스럽게 느껴져서 좋은 거 같습니다 👍

리눅스 seccomp에 대해 더 알아보려면 다음을 참고한다.

* [seccomp 개요](https://lwn.net/Articles/656307/)
* [도커를 위한 Seccomp 보안 프로파일](https://docs.docker.com/engine/security/seccomp/)

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
* [도커를 위한 Seccomp 보안 프로파일](https://docs.docker.com/engine/security/seccomp/)
* [도커용 Seccomp 보안 프로파일](https://docs.docker.com/engine/security/seccomp/)

도커를 위한은 번역투 같아 바꿔 보았습니다.

Copy link
Copy Markdown
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

반영하여 업데이트하겠습니다. :)

Signed-off-by: Seokho Son <shsongist@gmail.com>
@kubernetes-prow

Copy link
Copy Markdown
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please ask for approval from wonyongg. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@seokho-son

Copy link
Copy Markdown
Member Author

@wonyongg 리뷰 감사합니다. 일단 두 가지 사항만 있어서, 어떻게 반영했는지 댓글로 공유 드리고, amend 로 커밋 푸시하여 커밋 1개로 유지해두었습니다.

@wonyongg

wonyongg commented Jul 8, 2026

Copy link
Copy Markdown
Member

/lgtm

@kubernetes-prow kubernetes-prow Bot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Jul 8, 2026
@kubernetes-prow

Copy link
Copy Markdown
Contributor

LGTM label has been added.

DetailsGit tree hash: f26a5f676ebca6c72cdd9d24faa13b8352a7bc94

@ianychoi ianychoi left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I agree with @wonyongg 's review comments "번역투" regarding the PR. Let me provide my review comment in addition.

@seokho-son Also, would you share how you leverage generative AI in details (e.g., total # hours you worked, the detail procedure how to leveraged) for further reference? I want to better understand how much effort further committers leverage similar contribution approach as well as how reviewers can leverage with the assistance of generative AI with the full responsibility.

# - hasheddan
# - pjbgf
# - saschagrunert
title: seccomp를 사용하여 컨테이너의 시스템 콜(syscall) 제한

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

seccomp를 사용하여 looks like a AI-generated tone in Korean language. I'd suggest to change from 사용하여 to 사용한 or seccomp를 사용하여 컨테이너의 시스템 콜(syscall) 제한하기

{{< glossary_tooltip text="노드" term_id="node" >}}에 로드된 seccomp 프로파일을
파드와 컨테이너에 자동으로 적용할 수 있다.

워크로드에 필요한 권한을 식별하기란 어려울 수 있다. 이 튜토리얼에서는 로컬

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I have not seen "식별하기란" tone in natural language - my suggestion: "워크로드에 필요한 권한을 식별하는 것은 어려울 수 있다."

audit.json fine-grained.json violation.json
```

## kind로 로컬 쿠버네티스 클러스터 생성

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Similar tone I feel.. how about "kind 기반 로컬 Kubernetes 클러스터 구성" or "kind로 로컬 쿠버네티스 클러스터 생성하기"?


간단하게, [kind](https://kind.sigs.k8s.io/)를 사용하면 seccomp 프로파일이 적재된
단일 노드 클러스터를 생성할 수 있다. kind는 도커에서 쿠버네티스를 실행하므로,
클러스터의 각 노드는 컨테이너이다. 따라서 노드에 파일을 적재하는 것과

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks like that "적재하는" translation sometimes also come from "shipping". Just like "노드에 파일을 올려두는 것과" would be more natural. Note that it also apply to L101 and L149.

모니터링하기 위해 `tail`을 사용한다.

```shell
# 컴퓨터의 로그 경로는 "/var/log/syslog"와 다를 수 있다.

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

"컴퓨터의" -> "컴퓨터 내" or "컴퓨터에서" would better represent the meaning of "on" your computer.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

area/localization General issues or PRs related to localization cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. language/ko Issues or PRs related to Korean language lgtm "Looks good to me", indicates that a PR is ready to be merged. sig/docs Categorizes an issue or PR as relevant to SIG Docs. size/XL Denotes a PR that changes 500-999 lines, ignoring generated files.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

4 participants