Support Google Kubernetes Engine (GKE) Autopilot (Privileged Pods/Containers Access)

[TigerC10]

Grafana already supports GKE Autopilot, which is described as:

GKE Autopilot is a mode of operation in GKE in which Google manages your cluster configuration, including your nodes, scaling, security, and other preconfigured settings. Autopilot clusters are optimized to run most production workloads, and provision compute resources based on your Kubernetes manifests. The streamlined configuration follows GKE best practices and recommendations for cluster and workload setup, scalability, and security.

GKE Autopilot provides managed worker nodes in addition to a managed control plane for Kubernetes clusters. As such, there are security lock-downs that prevent privileged containers from running. In order to run a pod/container with Privileged access, the container image must be allow-listed by the a Google Cloud Partner in the GKE Autopilot Partners list.

Grafana is already a Google Cloud Partner, so it shouldn't take much to publish the Beyla container images to a gcr.io asset repository and get it added to the GKE Autopilot Partners list.

[grcevski]

Great idea, thanks for this suggestion!