Unable to deploy loki in a securityContext secured kubernetes environment

Hi!

I’m facing an issue while trying to deploy Loki in a secured environment that mandates all pods to have the securityContext.capabilities.drop=["ALL"] setting.
Unfortunately, I haven’t found a way to configure this in the values.yaml file for the following pods: loki-backend-0, loki-chunks-cache-0, and loki-results-cache-0.

Running loki helmchart 6.5.2
With this configuration:

---
loki:
  schemaConfig:
    configs:
      - from: 2024-04-01
        store: tsdb
        object_store: s3
        schema: v13
        index:
          prefix: loki_index_
          period: 24h
  ingester:
    chunk_encoding: snappy
  tracing:
    enabled: true
  querier:
    max_concurrent: 3
  storage:
    filesystem: null
    s3:
      endpoint:  [ommited]
      accessKeyId:  [ommited]
      secretAccessKey:  [ommited]
      s3ForcePathStyle: false
    bucketNames:
      chunks: loki-chunk
      ruler: loki-ruler
      admin: loki-admin
  podSecurityContext:
    fsGroup: 101
    runAsGroup: 101
    runAsNonRoot: true
    runAsUser: 101
    seccompProfile:
      type: RuntimeDefault
  containerSecurityContext:
    readOnlyRootFilesystem: true
    capabilities:
      drop:
        - ALL
    allowPrivilegeEscalation: false
  auth_enabled: false

  ingress:
    enabled: true
    annotations: {}
    hosts:
      - host: loki-gateway.test.net
        paths:
          - path: /
            pathType: Prefix
    tls:
      - hosts:
          - loki-gateway.test.net

gateway:
  replicas: 1
  podSecurityContext:
    fsGroup: 101
    runAsGroup: 101
    runAsNonRoot: true
    runAsUser: 101
    seccompProfile:
      type: RuntimeDefault
  containerSecurityContext:
    readOnlyRootFilesystem: true
    capabilities:
      drop:
        - ALL
    allowPrivilegeEscalation: false

deploymentMode: SimpleScalable

backend:
  replicas: 3
  podSecurityContext:
    fsGroup: 101
    runAsGroup: 101
    runAsNonRoot: true
    runAsUser: 101
    seccompProfile:
      type: RuntimeDefault
  containerSecurityContext:
    readOnlyRootFilesystem: true
    capabilities:
      drop:
        - ALL
    allowPrivilegeEscalation: false
  extraArgs:
    - "-config.expand-env=true"
  extraEnv:  [ommited]

read:
  replicas: 3
  extraArgs:
    - "-config.expand-env=true"
  extraEnv:  [ommited]

write:
  replicas: 3
  extraArgs:
    - "-config.expand-env=true"
  extraEnv: [ommited]

minio:
  enabled: false

singleBinary:
  replicas: 0

ingester:
  replicas: 0
querier:
  replicas: 0
queryFrontend:
  replicas: 0
queryScheduler:
  replicas: 0
distributor:
  replicas: 0
compactor:
  replicas: 0
indexGateway:
  replicas: 0
bloomCompactor:
  replicas: 0
bloomGateway:
  replicas: 0

rbac:
  pspEnabled: false
  sccEnabled: false
  namespaced: true