diff --git a/apis/v1alpha1/ack-generate-metadata.yaml b/apis/v1alpha1/ack-generate-metadata.yaml
index d623a1d..0443a2e 100755
--- a/apis/v1alpha1/ack-generate-metadata.yaml
+++ b/apis/v1alpha1/ack-generate-metadata.yaml
@@ -1,8 +1,8 @@
 ack_generate_info:
-  build_date: "2023-05-03T16:53:00Z"
-  build_hash: 06bf1325851814e1f8004dc70fb50f5023fdf24c
-  go_version: go1.19.4
-  version: v0.26.0-1-g06bf132
+  build_date: "2023-05-15T23:15:50Z"
+  build_hash: 8f3ba427974fd6e769926778d54834eaee3b81a3
+  go_version: go1.19
+  version: v0.26.1
 api_directory_checksum: 26341f700d12dfcd4033cf4203492fa381daa7b0
 api_version: v1alpha1
 aws_sdk_go_version: v1.44.93
diff --git a/config/controller/deployment.yaml b/config/controller/deployment.yaml
index 3089c94..a49f3f8 100644
--- a/config/controller/deployment.yaml
+++ b/config/controller/deployment.yaml
@@ -73,6 +73,9 @@ spec:
           capabilities:
             drop:
               - ALL
+      securityContext:
+        seccompProfile:
+          type: RuntimeDefault
       terminationGracePeriodSeconds: 10
       serviceAccountName: ack-iam-controller
       hostIPC: false
diff --git a/config/controller/kustomization.yaml b/config/controller/kustomization.yaml
index 2bad4e1..0b23516 100644
--- a/config/controller/kustomization.yaml
+++ b/config/controller/kustomization.yaml
@@ -6,4 +6,4 @@ kind: Kustomization
 images:
 - name: controller
   newName: public.ecr.aws/aws-controllers-k8s/iam-controller
-  newTag: v1.2.1
+  newTag: 1.2.2
diff --git a/helm/Chart.yaml b/helm/Chart.yaml
index 7380cd0..8bfd97f 100644
--- a/helm/Chart.yaml
+++ b/helm/Chart.yaml
@@ -1,8 +1,8 @@
 apiVersion: v1
 name: iam-chart
 description: A Helm chart for the ACK service controller for AWS Identity & Access Management (IAM)
-version: v1.2.1
-appVersion: v1.2.1
+version: 1.2.2
+appVersion: 1.2.2
 home: https://github.com/aws-controllers-k8s/iam-controller
 icon: https://raw.githubusercontent.com/aws/eks-charts/master/docs/logo/aws.png
 sources:
diff --git a/helm/crds/services.k8s.aws_adoptedresources.yaml b/helm/crds/services.k8s.aws_adoptedresources.yaml
index 7dca541..d8d5126 100644
--- a/helm/crds/services.k8s.aws_adoptedresources.yaml
+++ b/helm/crds/services.k8s.aws_adoptedresources.yaml
@@ -145,7 +145,10 @@ spec:
                             blockOwnerDeletion:
                               description: If true, AND if the owner has the "foregroundDeletion"
                                 finalizer, then the owner cannot be deleted from the
-                                key-value store until this reference is removed. Defaults
+                                key-value store until this reference is removed. See
+                                https://kubernetes.io/docs/concepts/architecture/garbage-collection/#foreground-deletion
+                                for how the garbage collector interacts with this
+                                field and enforces the foreground deletion. Defaults
                                 to false. To set this field, a user needs "delete"
                                 permission of the owner, otherwise 422 (Unprocessable
                                 Entity) will be returned.
diff --git a/helm/templates/NOTES.txt b/helm/templates/NOTES.txt
index e33bba8..b03e4bf 100644
--- a/helm/templates/NOTES.txt
+++ b/helm/templates/NOTES.txt
@@ -1,5 +1,5 @@
 {{ .Chart.Name }} has been installed.
-This chart deploys "public.ecr.aws/aws-controllers-k8s/iam-controller:v1.2.1".
+This chart deploys "public.ecr.aws/aws-controllers-k8s/iam-controller:1.2.2".
 
 Check its status by running:
   kubectl --namespace {{ .Release.Namespace }} get pods -l "app.kubernetes.io/instance={{ .Release.Name }}"
diff --git a/helm/templates/deployment.yaml b/helm/templates/deployment.yaml
index b3c0ede..7504a61 100644
--- a/helm/templates/deployment.yaml
+++ b/helm/templates/deployment.yaml
@@ -116,6 +116,9 @@ spec:
           capabilities:
             drop:
               - ALL
+      securityContext:
+        seccompProfile:
+          type: RuntimeDefault
       terminationGracePeriodSeconds: 10
       nodeSelector: {{ toYaml .Values.deployment.nodeSelector | nindent 8 }}
       {{ if .Values.deployment.tolerations -}}
diff --git a/helm/values.yaml b/helm/values.yaml
index 06c3e6e..0d6e414 100644
--- a/helm/values.yaml
+++ b/helm/values.yaml
@@ -4,7 +4,7 @@
 
 image:
   repository: public.ecr.aws/aws-controllers-k8s/iam-controller
-  tag: v1.2.1
+  tag: 1.2.2
   pullPolicy: IfNotPresent
   pullSecrets: []
 
@@ -31,7 +31,7 @@ deployment:
 
 # If "installScope: cluster" then these labels will be applied to ClusterRole
 role:
- labels: {}
+  labels: {}
   
 metrics:
   service:
diff --git a/pkg/resource/group/resource.go b/pkg/resource/group/resource.go
index 7baea38..7c88620 100644
--- a/pkg/resource/group/resource.go
+++ b/pkg/resource/group/resource.go
@@ -45,7 +45,7 @@ func (r *resource) Identifiers() acktypes.AWSResourceIdentifiers {
 }
 
 // IsBeingDeleted returns true if the Kubernetes resource has a non-zero
-// deletion timestemp
+// deletion timestamp
 func (r *resource) IsBeingDeleted() bool {
 	return !r.ko.DeletionTimestamp.IsZero()
 }
diff --git a/pkg/resource/open_id_connect_provider/resource.go b/pkg/resource/open_id_connect_provider/resource.go
index f2bf4d1..77d00f6 100644
--- a/pkg/resource/open_id_connect_provider/resource.go
+++ b/pkg/resource/open_id_connect_provider/resource.go
@@ -45,7 +45,7 @@ func (r *resource) Identifiers() acktypes.AWSResourceIdentifiers {
 }
 
 // IsBeingDeleted returns true if the Kubernetes resource has a non-zero
-// deletion timestemp
+// deletion timestamp
 func (r *resource) IsBeingDeleted() bool {
 	return !r.ko.DeletionTimestamp.IsZero()
 }
diff --git a/pkg/resource/policy/resource.go b/pkg/resource/policy/resource.go
index 2314926..9d673f7 100644
--- a/pkg/resource/policy/resource.go
+++ b/pkg/resource/policy/resource.go
@@ -45,7 +45,7 @@ func (r *resource) Identifiers() acktypes.AWSResourceIdentifiers {
 }
 
 // IsBeingDeleted returns true if the Kubernetes resource has a non-zero
-// deletion timestemp
+// deletion timestamp
 func (r *resource) IsBeingDeleted() bool {
 	return !r.ko.DeletionTimestamp.IsZero()
 }
diff --git a/pkg/resource/role/resource.go b/pkg/resource/role/resource.go
index 3913d27..3775b5c 100644
--- a/pkg/resource/role/resource.go
+++ b/pkg/resource/role/resource.go
@@ -45,7 +45,7 @@ func (r *resource) Identifiers() acktypes.AWSResourceIdentifiers {
 }
 
 // IsBeingDeleted returns true if the Kubernetes resource has a non-zero
-// deletion timestemp
+// deletion timestamp
 func (r *resource) IsBeingDeleted() bool {
 	return !r.ko.DeletionTimestamp.IsZero()
 }
diff --git a/pkg/resource/user/resource.go b/pkg/resource/user/resource.go
index ec1b57d..ee6bc4e 100644
--- a/pkg/resource/user/resource.go
+++ b/pkg/resource/user/resource.go
@@ -45,7 +45,7 @@ func (r *resource) Identifiers() acktypes.AWSResourceIdentifiers {
 }
 
 // IsBeingDeleted returns true if the Kubernetes resource has a non-zero
-// deletion timestemp
+// deletion timestamp
 func (r *resource) IsBeingDeleted() bool {
 	return !r.ko.DeletionTimestamp.IsZero()
 }