From 5d7257bed454d7b5dfb993dfd9d27962ff7f01c7 Mon Sep 17 00:00:00 2001
From: Jay Deokar <jsdeokar@amazon.com>
Date: Fri, 8 Sep 2023 14:36:09 -0700
Subject: [PATCH] Update the use of privileged flag in aws-vpc-cni manifest

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index ea4fed95ab..014bb91c51 100644
--- a/README.md
+++ b/README.md
@@ -96,7 +96,7 @@ For a detailed explanation, see [`WARM_ENI_TARGET`, `WARM_IP_TARGET` and `MINIMU
 
 ## Privileged mode
 
-VPC CNI makes use of privileged mode (`privileged: true`) in the manifest only for its init container. This elevated privilege is required to set the networking kernel parameters.
+VPC CNI makes use of privileged mode (`privileged: true`) in the manifest for its `aws-vpc-cni-init` and `aws-eks-nodeagent` containers. `aws-vpc-cni-init` container requires elevated privilege to set the networking kernel parameters while `aws-eks-nodeagent` container requires these privileges for attaching BPF probes to enforce network policy
 
 ## Network Policies