spec:
  containers:
  - name: build
    image: git.pyrocufflink.net/containerimages/build/rpm
    command: &sleep
    - /bin/sh
    - -c
    - |
      trap 'kill $!' TERM
      sleep infinity &
      wait
    securityContext:
      privileged: true
  - name: publish
    image: git.pyrocufflink.net/containerimages/rsync
    command: *sleep
    volumeMounts:
    - mountPath: /etc/ssh/ssh_known_hosts
      name: ssh-known-hosts
      subPath: ssh_known_hosts
  hostUsers: false
  volumes:
  - name: ssh-known-hosts
    configMap:
      name: ssh-known-hosts