tetragon
tetragon copied to clipboard
cilium
api: Add service_account field for k8s Pod
Description
IMO, we don't need to have flag to enable service account details, feel free to let me know otherwise.
Fixes: #3118
Changelog
api: Add service_account field for k8s Pod
Testing
Testing was done local with kind related target, please find below the sample event
{
"process_exec": {
"process": {
"exec_id": "dGV0cmFnb24tZGV2LWNvbnRyb2wtcGxhbmU6OTI2MTE1NTUxMTQ4MDo1NDAyNjQ=",
"pid": 540264,
"uid": 0,
"cwd": "/",
"binary": "/usr/bin/tetragon-operator",
"arguments": "serve --config-dir=/etc/tetragon/operator.conf.d/ --metrics-bind-address=:2113",
"flags": "execve rootcwd clone inInitTree",
"start_time": "2025-07-30T06:43:33.472558105Z",
"auid": 4294967295,
"pod": {
"namespace": "tetragon",
"name": "tetragon-operator-8456c84fc-bh49w",
"container": {
"id": "containerd://c5113ead176ee06aae9352d11c3a745d26011c4c0ca73976cc3f7b324535b853",
"name": "tetragon-operator",
"image": {
"id": "sha256:149a95b0d10ae5c2d36777867d9eb5642d139ed733f73752e1c9dd12e69eefc6",
"name": "docker.io/cilium/tetragon-operator:latest"
},
"start_time": "2025-07-30T06:43:33Z",
"pid": 1,
"security_context": {}
},
"pod_labels": {
"app.kubernetes.io/component": "operator",
"app.kubernetes.io/instance": "tetragon",
"app.kubernetes.io/managed-by": "Helm",
"app.kubernetes.io/name": "tetragon-operator",
"app.kubernetes.io/part-of": "tetragon",
"app.kubernetes.io/version": "1.4.0",
"helm.sh/chart": "tetragon-1.4.0",
"pod-template-hash": "8456c84fc"
},
"workload": "tetragon-operator",
"workload_kind": "Deployment",
"service_account": "tetragon-operator-service-account"
},
"docker": "c5113ead176ee06aae9352d11c3a745",
"parent_exec_id": "dGV0cmFnb24tZGV2LWNvbnRyb2wtcGxhbmU6OTI2MDk1OTkwMzM5NTo1NDAyMTQ=",
"tid": 540264,
"in_init_tree": true
},
"parent": {
"exec_id": "dGV0cmFnb24tZGV2LWNvbnRyb2wtcGxhbmU6OTI2MDk1OTkwMzM5NTo1NDAyMTQ=",
"pid": 540214,
"uid": 0,
"cwd": "/run/containerd/io.containerd.runtime.v2.task/k8s.io/9addb6df7115d9c3f664a440abad69077d6df2cb1f4c31d005d66c5a68bb70b2",
"binary": "/usr/local/bin/containerd-shim-runc-v2",
"arguments": "-namespace k8s.io -id 9addb6df7115d9c3f664a440abad69077d6df2cb1f4c31d005d66c5a68bb70b2 -address /run/containerd/containerd.sock",
"flags": "execve clone",
"start_time": "2025-07-30T06:43:33.276949937Z",
"auid": 4294967295,
"parent_exec_id": "dGV0cmFnb24tZGV2LWNvbnRyb2wtcGxhbmU6OTI2MDk1NjQ2ODkyNzo1NDAyMDY=",
"tid": 540214,
"in_init_tree": false
}
},
"node_name": "tetragon-dev-control-plane",
"time": "2025-07-30T06:43:33.472557605Z",
"node_labels": {
"beta.kubernetes.io/arch": "arm64",
"beta.kubernetes.io/os": "linux",
"kubernetes.io/arch": "arm64",
"kubernetes.io/hostname": "tetragon-dev-control-plane",
"kubernetes.io/os": "linux",
"node-role.kubernetes.io/control-plane": ""
}
}
Deploy Preview for tetragon ready!
| Name | Link |
|---|---|
| Latest commit | a7cfadbf9d622bf029bdf64090b59df4f057ae56 |
| Latest deploy log | https://app.netlify.com/projects/tetragon/deploys/6889c04834374500084523d7 |
| Deploy Preview | https://deploy-preview-3967--tetragon.netlify.app |
| Preview on mobile | Toggle QR Code...Use your smartphone camera to open QR code link. |
To edit notification comments on pull requests, go to your Netlify project configuration.
![netlify[bot] avatar](https://avatars.githubusercontent.com/in/13473?v=4 "Published by a pub.dev verified publisher"){kind=small}