Hello Team, I have a query.
Does envoy docker image used in the service mesh need privilege escalation ? I have been following up on latest beta releases for consul-k8s and I see that security context is enforced but privilege escalation is still allowed.
We have a security policy implemented in our k8s cluster that do not allow any containers to run in allow privilege escalation mode.
Can someone clarify if allow privilege escalation is needed or not ? If needed then in what circumstances that would be needed ?