Release notes

DataDog · Nov 20, 2024 · 48a09b8 · 48a09b8
1 parent f75a640
commit 48a09b8
Showing 1 changed file with 14 additions and 0 deletions.
diff --git a/releasenotes/notes/agent-sidecar-security-cbfd5ea9f72124d0.yaml b/releasenotes/notes/agent-sidecar-security-cbfd5ea9f72124d0.yaml
@@ -0,0 +1,14 @@
+# Each section from every release note are combined when the
+# CHANGELOG.rst is rendered. So the text needs to be worded so that
+# it does not depend on any information only available in another
+# section. This may mean repeating some details, but each section
+# must be readable independently of the other.
+#
+# Each section note must be formatted as reStructuredText.
+---
+upgrade:
+enhancements:
+  - |
+    The Datadog Cluster Agent admission controller agent sidecar injection now sets up
+    Agent sidecars to run with securityContext of `readOnlyRootFilesystem:true` by default.
+    Advanced users can customize the securityContext via clusterAgent.admissionController.agentSidecarInjection.profiles.