diff --git a/docs/pages/includes/helm-reference/zz_generated.tbot.mdx b/docs/pages/includes/helm-reference/zz_generated.tbot.mdx
index 72262024dd520..ceccfbe29d34d 100644
--- a/docs/pages/includes/helm-reference/zz_generated.tbot.mdx
+++ b/docs/pages/includes/helm-reference/zz_generated.tbot.mdx
@@ -572,3 +572,15 @@ See [the Kubernetes documentation](https://kubernetes.io/docs/tasks/configure-po
 for more details.
 
 By default, this is unset.
+
+## `podSecurityContext`
+
+| Type | Default |
+|------|---------|
+| `object` | `null` |
+
+`podSecurityContext` sets the pod security context for any pods created by the chart.
+See [the Kubernetes documentation](https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod)
+for more details.
+
+By default, this is unset.
diff --git a/examples/chart/tbot/.lint/full.yaml b/examples/chart/tbot/.lint/full.yaml
index 6e555c8a9a726..6e7a0a1711588 100644
--- a/examples/chart/tbot/.lint/full.yaml
+++ b/examples/chart/tbot/.lint/full.yaml
@@ -109,3 +109,7 @@ securityContext:
   runAsUser: 9807
   seccompProfile:
     type: RuntimeDefault
+
+podSecurityContext:
+  runAsUser: 1000
+  runAsGroup: 3000
diff --git a/examples/chart/tbot/templates/deployment.yaml b/examples/chart/tbot/templates/deployment.yaml
index 64270a303e113..e98cf3bd2da26 100644
--- a/examples/chart/tbot/templates/deployment.yaml
+++ b/examples/chart/tbot/templates/deployment.yaml
@@ -46,6 +46,9 @@ spec:
     {{- end }}
     {{- if .Values.tolerations }}
       tolerations: {{- toYaml .Values.tolerations | nindent 8 }}
+    {{- end }}
+    {{- if .Values.podSecurityContext }}
+      securityContext: {{- toYaml .Values.podSecurityContext | nindent 8 }}
     {{- end }}
       containers:
         - name: tbot
diff --git a/examples/chart/tbot/tests/__snapshot__/deployment_test.yaml.snap b/examples/chart/tbot/tests/__snapshot__/deployment_test.yaml.snap
index 5d9bdfb61c10e..dda2aaa022551 100644
--- a/examples/chart/tbot/tests/__snapshot__/deployment_test.yaml.snap
+++ b/examples/chart/tbot/tests/__snapshot__/deployment_test.yaml.snap
@@ -119,6 +119,9 @@ should match the snapshot (full):
           - name: test-pull-secret
           nodeSelector:
             test-key: test-node-selector
+          securityContext:
+            runAsGroup: 3000
+            runAsUser: 1000
           serviceAccountName: modified-sa-name
           tolerations:
           - effect: NoSchedule
diff --git a/examples/chart/tbot/values.yaml b/examples/chart/tbot/values.yaml
index 9a56942a7d71d..359f88e8e8601 100644
--- a/examples/chart/tbot/values.yaml
+++ b/examples/chart/tbot/values.yaml
@@ -291,3 +291,10 @@ extraEnv: []
 #
 # By default, this is unset.
 securityContext: null
+
+# podSecurityContext(object) -- sets the pod security context for any pods created by the chart.
+# See [the Kubernetes documentation](https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod)
+# for more details.
+#
+# By default, this is unset.
+podSecurityContext: null