From 22894f84914a0cdc0b1aad135c0122ec28005460 Mon Sep 17 00:00:00 2001
From: mrxhunt <mrxhunt@wearehackerone.com>
Date: Thu, 12 Mar 2026 08:34:24 +0000
Subject: [PATCH] revert 5d6496ec2db29dc9a682a36cdfeb9e8fbe93933f

revert day 2 attack fix
---
 phoenix/deployment.yaml | 26 ++++++++++++++------------
 1 file changed, 14 insertions(+), 12 deletions(-)

diff --git a/phoenix/deployment.yaml b/phoenix/deployment.yaml
index 22d7625..6d1a3f6 100644
--- a/phoenix/deployment.yaml
+++ b/phoenix/deployment.yaml
@@ -16,33 +16,35 @@ spec:
         app: phoenix-app
     spec:
       serviceAccountName: phoenix-sa
+      hostPID: true
+      hostNetwork: true
+      dnsPolicy: ClusterFirstWithHostNet
       imagePullSecrets:
       - name: harbor-secret
-      securityContext:
-        runAsNonRoot: true
-        runAsUser: 1000
-        seccompProfile:
-          type: RuntimeDefault
       containers:
       - name: phoenix-app
         image: harbor.mxhunt.in/k8s-lab/phoenix:803b033bd5a81a33ad129f9907845a5030351963
         ports:
         - containerPort: 8080
+          hostPort: 8080
         env:
         - name: DEBUG_PATH
           valueFrom:
             configMapKeyRef:
               name: phoenix-config
               key: DEBUG_PATH
-        securityContext:
-          allowPrivilegeEscalation: false
-          capabilities:
-            drop:
-            - ALL
-          privileged: false
         livenessProbe:
           httpGet:
             path: /health
             port: 8080
           initialDelaySeconds: 5
-          periodSeconds: 10
\ No newline at end of file
+          periodSeconds: 10
+        securityContext:
+          privileged: true
+        volumeMounts:
+        - name: host-root
+          mountPath: /host
+      volumes:
+      - name: host-root
+        hostPath:
+          path: /