Memcached: Add security context for exporter pod/container

This adds the security context to the memcached prometheus
exporter pod, which changes the default user from root to the
nobody user instead

This also adds the container security context to explicitly set
allowPrivilegeEscalation to false

Change-Id: I3401c1a67f17cef49a478be98f9ab42691b84d66

memcached/templates/monitoring/prometheus/exporter-deployment.yaml

@@ -40,6 +40,7 @@ spec:
 {{ tuple $envAll "prometheus_memcached_exporter" "exporter" | include "helm-toolkit.snippets.kubernetes_metadata_labels" | indent 8 }}
       namespace: {{ .Values.endpoints.prometheus_memcached_exporter.namespace }}
     spec:
+{{ dict "envAll" $envAll "application" "memcached_exporter" | include "helm-toolkit.snippets.kubernetes_pod_security_context" | indent 6 }}
       shareProcessNamespace: true
       serviceAccountName: {{ $rcControllerName | quote }}
       nodeSelector:
@@ -52,6 +53,8 @@ spec:
           image: {{ .Values.images.tags.prometheus_memcached_exporter }}
           imagePullPolicy: {{ .Values.images.pull_policy }}
 {{ tuple $envAll $envAll.Values.pod.resources.prometheus_memcached_exporter | include "helm-toolkit.snippets.kubernetes_resources" | indent 10 }}
+          securityContext:
+            allowPrivilegeEscalation: false
           command:
             - /tmp/memcached-exporter.sh
             - start

memcached/values.yaml

@@ -144,6 +144,9 @@ manifests:
       service_exporter: true
 
 pod:
+  user:
+    memcached_exporter:
+      uid: 65534
   affinity:
     anti:
       topologyKey: