Ruby 4.0 is the new latest branch (#89184)

ruby 4.0 is the new latest branch Signed-off-by: Carlos Rodríguez Hernández <carlos.rodriguez-hernandez@broadcom.com>
2025-12-29 09:28:13 +01:00 · 2025-12-29 09:28:13 +01:00 · 2f434535b2
parent 804c5ef509
commit 2f434535b2
7 changed files with 10 additions and 147 deletions
--- a/bitnami/ruby/3.4/README.md
+++ b/bitnami/ruby/3.4/README.md
@ -0,0 +1,10 @@
+# ⚠️ Important Notice: Upcoming changes to the Bitnami Catalog
+
+Beginning August 28th, 2025, Bitnami will evolve its public catalog to offer a curated set of hardened, security-focused images under the new [Bitnami Secure Images initiative](https://news.broadcom.com/app-dev/broadcom-introduces-bitnami-secure-images-for-production-ready-containerized-applications). As part of this transition:
+
+- Granting community users access for the first time to security-optimized versions of popular container images.
+- Bitnami will begin deprecating support for non-hardened, Debian-based software images in its free tier and will gradually remove non-latest tags from the public catalog. As a result, community users will have access to a reduced number of hardened images. These images are published only under the “latest” tag and are intended for development purposes
+- Starting August 28th, over two weeks, all existing container images, including older or versioned tags (e.g., 2.50.0, 10.6), will be migrated from the public catalog (docker.io/bitnami) to the “Bitnami Legacy” repository (docker.io/bitnamilegacy), where they will no longer receive updates.
+- For production workloads and long-term support, users are encouraged to adopt Bitnami Secure Images, which include hardened containers, smaller attack surfaces, CVE transparency (via VEX/KEV), SBOMs, and enterprise support.
+
+These changes aim to improve the security posture of all Bitnami users by promoting best practices for software supply chain integrity and up-to-date deployments. For more details, visit the [Bitnami Secure Images announcement](https://github.com/bitnami/containers/issues/83267).
--- a/bitnami/ruby/3.4/debian-12/Dockerfile
+++ b/bitnami/ruby/3.4/debian-12/Dockerfile
@ -1,56 +0,0 @@
-# Copyright Broadcom, Inc. All Rights Reserved.
-# SPDX-License-Identifier: APACHE-2.0
-
-FROM docker.io/bitnami/minideb:bookworm
-
-ARG DOWNLOADS_URL="downloads.bitnami.com/files/stacksmith"
-ARG TARGETARCH
-
-LABEL org.opencontainers.image.base.name="docker.io/bitnami/minideb:bookworm" \
-      org.opencontainers.image.created="2025-12-17T04:22:55Z" \
-      org.opencontainers.image.description="Application packaged by Broadcom, Inc." \
-      org.opencontainers.image.documentation="https://github.com/bitnami/containers/tree/main/bitnami/ruby/README.md" \
-      org.opencontainers.image.source="https://github.com/bitnami/containers/tree/main/bitnami/ruby" \
-      org.opencontainers.image.title="ruby" \
-      org.opencontainers.image.vendor="Broadcom, Inc." \
-      org.opencontainers.image.version="3.4.8"
-
-ENV OS_ARCH="${TARGETARCH:-amd64}" \
-    OS_FLAVOUR="debian-12" \
-    OS_NAME="linux"
-
-COPY prebuildfs /
-SHELL ["/bin/bash", "-o", "errexit", "-o", "nounset", "-o", "pipefail", "-c"]
-# Install required system packages and dependencies
-RUN install_packages build-essential ca-certificates curl git libcrypt1 libffi8 libgcc-s1 libjemalloc2 libreadline-dev libsqlite3-dev libssl-dev libssl3 libstdc++6 libyaml-0-2 libyaml-dev pkg-config procps sqlite3 unzip wget zlib1g zlib1g-dev
-RUN --mount=type=secret,id=downloads_url,env=SECRET_DOWNLOADS_URL \
-    DOWNLOADS_URL=${SECRET_DOWNLOADS_URL:-${DOWNLOADS_URL}} ; \
-    mkdir -p /tmp/bitnami/pkg/cache/ ; cd /tmp/bitnami/pkg/cache/ || exit 1 ; \
-    COMPONENTS=( \
-      "ruby-3.4.8-0-linux-${OS_ARCH}-debian-12" \
-    ) ; \
-    for COMPONENT in "${COMPONENTS[@]}"; do \
-      if [ ! -f "${COMPONENT}.tar.gz" ]; then \
-        curl -SsLf "https://${DOWNLOADS_URL}/${COMPONENT}.tar.gz" -O ; \
-        curl -SsLf "https://${DOWNLOADS_URL}/${COMPONENT}.tar.gz.sha256" -O ; \
-      fi ; \
-      sha256sum -c "${COMPONENT}.tar.gz.sha256" ; \
-      tar -zxf "${COMPONENT}.tar.gz" -C /opt/bitnami --strip-components=2 --no-same-owner ; \
-      rm -rf "${COMPONENT}".tar.gz{,.sha256} ; \
-    done
-RUN apt-get update && apt-get upgrade -y && \
-    apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives
-RUN find / -perm /6000 -type f -exec chmod a-s {} \; || true
-RUN sed -i 's/^PASS_MAX_DAYS.*/PASS_MAX_DAYS    90/' /etc/login.defs && \
-    sed -i 's/^PASS_MIN_DAYS.*/PASS_MIN_DAYS    0/' /etc/login.defs && \
-    sed -i 's/sha512/sha512 minlen=8/' /etc/pam.d/common-password
-
-ENV APP_VERSION="3.4.8" \
-    BITNAMI_APP_NAME="ruby" \
-    IMAGE_REVISION="0" \
-    PATH="/opt/bitnami/ruby/bin:$PATH"
-
-EXPOSE 3000
-
-WORKDIR /app
-CMD [ "irb" ]
--- a/bitnami/ruby/3.4/debian-12/docker-compose.yml
+++ b/bitnami/ruby/3.4/debian-12/docker-compose.yml
@ -1,12 +0,0 @@
-# Copyright Broadcom, Inc. All Rights Reserved.
-# SPDX-License-Identifier: APACHE-2.0
-
-services:
-  ruby:
-    tty: true # Enables debugging capabilities when attached to this container.
-    image: docker.io/bitnami/ruby:3.4
-    # command: sh -c 'bundle install && bundle exec rails server -b 0.0.0.0 -p 3000'
-    ports:
-      - 3000:3000
-    volumes:
-      - .:/app
--- a/bitnami/ruby/3.4/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt
+++ b/bitnami/ruby/3.4/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt
@ -1,2 +0,0 @@
-Bitnami containers ship with software bundles. You can find the licenses under:
-/opt/bitnami/[name-of-bundle]/licenses/[bundle-version].txt
--- a/bitnami/ruby/3.4/debian-12/prebuildfs/usr/sbin/install_packages
+++ b/bitnami/ruby/3.4/debian-12/prebuildfs/usr/sbin/install_packages
@ -1,27 +0,0 @@
-#!/bin/sh
-# Copyright Broadcom, Inc. All Rights Reserved.
-# SPDX-License-Identifier: APACHE-2.0
-set -eu
-
-n=0
-max=2
-export DEBIAN_FRONTEND=noninteractive
-
-until [ $n -gt $max ]; do
-    set +e
-    (
-      apt-get update -qq &&
-      apt-get install -y --no-install-recommends "$@"
-    )
-    CODE=$?
-    set -e
-    if [ $CODE -eq 0 ]; then
-        break
-    fi
-    if [ $n -eq $max ]; then
-        exit $CODE
-    fi
-    echo "apt failed, retrying"
-    n=$(($n + 1))
-done
-apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives
--- a/bitnami/ruby/3.4/debian-12/prebuildfs/usr/sbin/run-script
+++ b/bitnami/ruby/3.4/debian-12/prebuildfs/usr/sbin/run-script
@ -1,24 +0,0 @@
-#!/bin/sh
-# Copyright Broadcom, Inc. All Rights Reserved.
-# SPDX-License-Identifier: APACHE-2.0
-set -u
-
-if [ $# -eq 0 ]; then
-    >&2 echo "No arguments provided"
-    exit 1
-fi
-
-script=$1
-exit_code="${2:-96}"
-fail_if_not_present="${3:-n}"
-
-if test -f "$script"; then
-  sh $script
-
-  if [ $? -ne 0 ]; then
-    exit $((exit_code))
-  fi
-elif [ "$fail_if_not_present" = "y" ]; then
-  >&2 echo "script not found: $script"
-  exit 127
-fi
--- a/bitnami/ruby/3.4/debian-12/prebuildfs/usr/sbin/uninstall_packages
+++ b/bitnami/ruby/3.4/debian-12/prebuildfs/usr/sbin/uninstall_packages
@ -1,26 +0,0 @@
-#!/bin/sh
-# Copyright Broadcom, Inc. All Rights Reserved.
-# SPDX-License-Identifier: APACHE-2.0
-set -eu
-
-n=0
-max=2
-export DEBIAN_FRONTEND=noninteractive
-
-until [ $n -gt $max ]; do
-    set +e
-    (
-        apt-get autoremove --purge -y "$@"
-    )
-    CODE=$?
-    set -e
-    if [ $CODE -eq 0 ]; then
-        break
-    fi
-    if [ $n -eq $max ]; then
-        exit $CODE
-    fi
-    echo "apt failed, retrying"
-    n=$(($n + 1))
-done
-apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives