move to default pod options and add runtime class for nvidia

kubernetes/apps/anime/jellyfin/app/helmrelease.yaml

@@ -67,16 +67,18 @@ spec:
               limits:
                 nvidia.com/gpu: 1 # requesting 1 GPU
                 memory: 4Gi
-        pod:
+    defaultPodOptions:
-          nodeSelector:
-            nvidia.com/gpu.present: "true"
       securityContext:
+        runAsNonRoot: true
         runAsUser: 568
         runAsGroup: 568
-            runAsNonRoot: true
         fsGroup: 568
         fsGroupChangePolicy: OnRootMismatch
         supplementalGroups: [44, 10000]
+        seccompProfile: { type: RuntimeDefault }
+      nodeSelector:
+        nvidia.com/gpu.present: "true"
+      runtimeClassName: nvidia
     service:
       app:
         controller: *app