containers[] .securityContext .capabilities .add | index("SYS_ADMIN")

CAP_SYS_ADMIN is the most privileged capability and should always be avoided

Built with by controlplane