diff --git a/apps/k8s01/blog/blog.yaml b/apps/k8s01/blog/blog.yaml
index 3f6791da357957707384aa6843e62aea7777dbc2..99cbf9b569c7466371e411e6e2be3c413f2d0dab 100644
--- a/apps/k8s01/blog/blog.yaml
+++ b/apps/k8s01/blog/blog.yaml
@@ -24,7 +24,7 @@ spec:
                 topologyKey: kubernetes.io/hostname
       automountServiceAccountToken: false
       containers:
-        - name: dnsproxy
+        - name: blog
           image: quay.io/shivering-isles/blog:latest
           imagePullPolicy: Always
           ports:
@@ -52,6 +52,15 @@ spec:
             failureThreshold: 1
             successThreshold: 3
             periodSeconds: 5
+          securityContext:
+            capabilities:
+              drop:
+                - ALL
+      securityContext:
+        allowPrivilegeEscalation: false
+        unAsNonRoot: true
+        seccompProfile:
+          type: RuntimeDefault
 ---
 apiVersion: v1
 kind: Service