Adding ability to set the dns policy and config for the runner pod

andrewgkew · andrewgkew · commit 3c551e0fa13c · 2026-05-01T15:00:01.000+01:00
diff --git a/helm/robusta/templates/runner.yaml b/helm/robusta/templates/runner.yaml
@@ -42,6 +42,23 @@ spec:
       securityContext:
       {{- toYaml . | nindent 8 }}
       {{- end }}
+      {{- if .Values.runner.dnsConfig.enabled }}
+      dnsPolicy: {{ .Values.runner.dnsConfig.policy | quote }}
+        {{- with .Values.runner.dnsConfig.nameservers }}
+        nameservers:
+          {{- toYaml . | nindent 10 }}
+        {{- end }}
+        {{- with .Values.runner.dnsConfig.searches }}
+        searches:
+          {{- toYaml . | nindent 10 }}
+        {{- end }}
+        {{- with .Values.runner.dnsConfig.options }}
+        options:
+          {{- toYaml . | nindent 10 }}
+        {{- end }}
+      {{ else }}
+      dnsPolicy: ClusterFirst
+      {{- end }}
       {{- if .Values.runner.hardenedFs }}
       initContainers:
       - name: setup-venv
diff --git a/helm/robusta/values.yaml b/helm/robusta/values.yaml
@@ -756,6 +756,13 @@ runner:
   # Enable hardened filesystem security (read-only root filesystem with writable volume mounts)
   hardenedFs: false
   setKRRSecurityContext: false
+  #Enabled custom DNS configuration for runner
+  dnsConfig:
+    enabled: false
+    policy: None
+    nameservers: []
+    searches: []
+    options: []
 # CRD permissions for common Kubernetes operators and tools
   crdPermissions:
     argo: true
