spec:
  nodeSelector:
    kubernetes.io/arch: arm64
  terminationGracePeriodSeconds: 0
  containers:
  - name: build
    image: registry.pyrocufflink.blue/build/basementhud
    command:
    - sleep
    - infinity
    securityContext:
      readOnlyRootFilesystem: true
      privileged: true
  - name: publish
    image: registry.fedoraproject.org/fedora
    command:
    - sleep
    - infinity
    securityContext:
      readOnlyRootFilesystem: true
      runAsUser: 1000