helm install --namespace=platform my-release signoz/k8s-infra -f openshift.yaml
W1020 18:41:31.761332    5176 warnings.go:70] would violate PodSecurity "restricted:v1.24": hostPort (container "my-release-k8s-infra-otel-agent" uses hostPorts 13133, 4317, 4318, 8888), allowPrivilegeEscalation != false (container "my-release-k8s-infra-otel-agent" must set securityContext.allowPrivilegeEscalation=false), unrestricted capabilities (container "my-release-k8s-infra-otel-agent" must set securityContext.capabilities.drop=["ALL"]), restricted volume types (volumes "varlog", "varlibdockercontainers" use restricted volume type "hostPath"), runAsNonRoot != true (pod or container "my-release-k8s-infra-otel-agent" must set securityContext.runAsNonRoot=true), seccompProfile (pod or container "my-release-k8s-infra-otel-agent" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")
NAME: my-release
LAST DEPLOYED: Sun Oct 20 18:41:30 2024
NAMESPACE: platform
STATUS: deployed
REVISION: 1
NOTES:

Error creating: pods "my-release-k8s-infra-otel-agent-" is forbidden: unable to validate against any security context constraint: [provider "anyuid": Forbidden: not usable by user or serviceaccount, provider "pipelines-scc": Forbidden: not usable by user or serviceaccount, spec.volumes[1]: Invalid value: "hostPath": hostPath volumes are not allowed to be used, spec.volumes[2]: Invalid value: "hostPath": hostPath volumes are not allowed to be used, provider restricted-v2: .containers[0].containers[0].hostPort: Invalid value: 13133: Host ports are not allowed to be used, provider restricted-v2: .containers[0].containers[0].hostPort: Invalid value: 8888: Host ports are not allowed to be used, provider restricted-v2: .containers[0].containers[0].hostPort: Invalid value: 4317: Host ports are not allowed to be used, provider restricted-v2: .containers[0].containers[0].hostPort: Invalid value: 4318: Host ports are not allowed to be used, provider "restricted": Forbidden: not usable by user or serviceaccount, provider "containerized-data-importer": Forbidden: not usable by user or serviceaccount, provider "nonroot-v2": Forbidden: not usable by user or serviceaccount, provider "nonroot": Forbidden: not usable by user or serviceaccount, provider "noobaa-db": Forbidden: not usable by user or serviceaccount, provider "stackstate-stackstate-k8s-stackstate-prod": Forbidden: not usable by user or serviceaccount, provider "stackstate-suse-observability-stackstate-prod": Forbidden: not usable by user or serviceaccount, provider "noobaa-endpoint": Forbidden: not usable by user or serviceaccount, provider "hostmount-anyuid": Forbidden: not usable by user or serviceaccount, provider "logging-scc": Forbidden: not usable by user or serviceaccount, provider "kubevirt-controller": Forbidden: not usable by user or serviceaccount, provider "machine-api-termination-handler": Forbidden: not usable by user or serviceaccount, provider "bridge-marker": Forbidden: not usable by user or serviceaccount, provider "hostnetwork-v2": Forbidden: not usable by user or serviceaccount, provider "hostnetwork": Forbidden: not usable by user or serviceaccount, provider "hostaccess": Forbidden: not usable by user or serviceaccount, provider "linux-bridge": Forbidden: not usable by user or serviceaccount, provider "kubevirt-handler": Forbidden: not usable by user or serviceaccount, provider "rook-ceph": Forbidden: not usable by user or serviceaccount, provider "stackstate-k8s-agent-node-agent": Forbidden: not usable by user or serviceaccount, provider "node-exporter": Forbidden: not usable by user or serviceaccount, provider "rook-ceph-csi": Forbidden: not usable by user or serviceaccount, provider "privileged": Forbidden: not usable by user or serviceaccount]