From 37d89e286a6cc99fff88d0298e747eb313d9d1b3 Mon Sep 17 00:00:00 2001
From: James Brophy <jbrophy@cm-green.bcloud.apcoe2.boeing.com>
Date: Tue, 3 Feb 2026 00:48:57 +0000
Subject: [PATCH 1/3] fix(influxdb3-ent): apply container securityContext to
 all StatefulSets

---
 .../influxdb3-enterprise/templates/compactor-statefulset.yaml | 4 ++++
 .../influxdb3-enterprise/templates/ingester-statefulset.yaml  | 4 ++++
 .../influxdb3-enterprise/templates/querier-statefulset.yaml   | 4 ++++
 3 files changed, 12 insertions(+)

diff --git a/charts/influxdb3-enterprise/templates/compactor-statefulset.yaml b/charts/influxdb3-enterprise/templates/compactor-statefulset.yaml
index 5bebd7f0..3c0a94e7 100644
--- a/charts/influxdb3-enterprise/templates/compactor-statefulset.yaml
+++ b/charts/influxdb3-enterprise/templates/compactor-statefulset.yaml
@@ -51,6 +51,10 @@ spec:
         {{- toYaml .Values.compactor.podSecurityContext | nindent 8 }}
       containers:
         - name: influxdb3
+          {{- with .Values.compactor.securityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
           image: {{ include "influxdb3-enterprise.image" . }}
           imagePullPolicy: {{ .Values.image.pullPolicy }}
           command:
diff --git a/charts/influxdb3-enterprise/templates/ingester-statefulset.yaml b/charts/influxdb3-enterprise/templates/ingester-statefulset.yaml
index 4dce9481..4d3a568c 100644
--- a/charts/influxdb3-enterprise/templates/ingester-statefulset.yaml
+++ b/charts/influxdb3-enterprise/templates/ingester-statefulset.yaml
@@ -46,6 +46,10 @@ spec:
         {{- toYaml .Values.ingester.podSecurityContext | nindent 8 }}
       containers:
         - name: influxdb3
+          {{- with .Values.ingester.securityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
           image: {{ include "influxdb3-enterprise.image" . }}
           imagePullPolicy: {{ .Values.image.pullPolicy }}
           command:
diff --git a/charts/influxdb3-enterprise/templates/querier-statefulset.yaml b/charts/influxdb3-enterprise/templates/querier-statefulset.yaml
index 89784536..b19ad1b4 100644
--- a/charts/influxdb3-enterprise/templates/querier-statefulset.yaml
+++ b/charts/influxdb3-enterprise/templates/querier-statefulset.yaml
@@ -46,6 +46,10 @@ spec:
         {{- toYaml .Values.querier.podSecurityContext | nindent 8 }}
       containers:
         - name: influxdb3
+          {{- with .Values.querier.securityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
           image: {{ include "influxdb3-enterprise.image" . }}
           imagePullPolicy: {{ .Values.image.pullPolicy }}
           command:

From fe414e8ebf9cc474b9151f31f0081b9423c329a6 Mon Sep 17 00:00:00 2001
From: Ales Pour <ales.pour@bonitoo.io>
Date: Fri, 6 Feb 2026 07:14:23 +0100
Subject: [PATCH 2/3] chore: bump chart version

---
 charts/influxdb3-enterprise/Chart.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/influxdb3-enterprise/Chart.yaml b/charts/influxdb3-enterprise/Chart.yaml
index f7641def..b02ecd71 100644
--- a/charts/influxdb3-enterprise/Chart.yaml
+++ b/charts/influxdb3-enterprise/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: influxdb3-enterprise
 description: A Helm chart for deploying InfluxDB 3 Enterprise on Kubernetes
 type: application
-version: 0.1.1
+version: 0.1.2
 appVersion: "3.6.0"
 keywords:
   - influxdb

From 7393ba0293616bad17f2fb5f6a3a5aebbeda745d Mon Sep 17 00:00:00 2001
From: Ales Pour <ales.pour@bonitoo.io>
Date: Fri, 6 Feb 2026 07:42:11 +0100
Subject: [PATCH 3/3] chore: add securityContext placeholders

---
 charts/influxdb3-enterprise/values.yaml | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/charts/influxdb3-enterprise/values.yaml b/charts/influxdb3-enterprise/values.yaml
index 0da0eafa..5fd8db5c 100644
--- a/charts/influxdb3-enterprise/values.yaml
+++ b/charts/influxdb3-enterprise/values.yaml
@@ -227,6 +227,9 @@ ingester:
     runAsUser: 1500            # Run as influxdb3 user
     runAsGroup: 1500           # Run as influxdb3 group
 
+  # Container-level security context (optional override)
+  securityContext: {}
+
   # Service configuration
   service:
     type: ClusterIP
@@ -306,6 +309,9 @@ querier:
     runAsUser: 1500            # Run as influxdb3 user
     runAsGroup: 1500           # Run as influxdb3 group
 
+  # Container-level security context (optional override)
+  securityContext: {}
+
   # Service configuration
   service:
     type: ClusterIP
@@ -389,6 +395,9 @@ compactor:
     runAsUser: 1500            # Run as influxdb3 user
     runAsGroup: 1500           # Run as influxdb3 group
 
+  # Container-level security context (optional override)
+  securityContext: {}
+
   # Service configuration (for metrics only)
   service:
     type: ClusterIP