From 5fb8dcdda02cdc371e631c34328593f87385d2df Mon Sep 17 00:00:00 2001
From: Fredrik Liv <fredrik.liv@elastisys.com>
Date: Thu, 30 Jan 2025 13:19:26 +0100
Subject: [PATCH] apps: Upgraded node local dns to v1.25.0 and dropped
 priviledged

---
 .../charts/node-local-dns/templates/node-local-dns.yaml     | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/helmfile.d/charts/node-local-dns/templates/node-local-dns.yaml b/helmfile.d/charts/node-local-dns/templates/node-local-dns.yaml
index be00b82f4..d0a53e2b4 100644
--- a/helmfile.d/charts/node-local-dns/templates/node-local-dns.yaml
+++ b/helmfile.d/charts/node-local-dns/templates/node-local-dns.yaml
@@ -145,11 +145,13 @@ spec:
         operator: "Exists"
       containers:
       - name: node-cache
-        image: registry.k8s.io/dns/k8s-dns-node-cache:1.23.1
+        image: registry.k8s.io/dns/k8s-dns-node-cache:1.25.0
         resources: {{- toYaml .Values.resources | nindent 10 }}
         args: [ "-localip", "{{ .Values.localIP }},{{ .Values.clusterDNS }}", "-conf", "/etc/Corefile", "-upstreamsvc", "kube-dns-upstream"]
         securityContext:
-          privileged: true
+          capabilities:
+            add:
+              - NET_ADMIN
         ports:
         - containerPort: 53
           name: dns