7eaa1e167a
docs: update changelog to correct old release tags ( #2536 )
2023-05-30 10:23:58 -07:00
297e46db80
chore(deps): bump cloud.google.com/go/storage from 1.29.0 to 1.30.1 ( #2439 )
...
Bumps [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go ) from 1.29.0 to 1.30.1.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/pubsub/v1.29.0...spanner/v1.30.1 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/storage
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-29 17:07:45 -07:00
4edf751d43
chore(deps): bump github.com/go-git/go-git/v5 from 5.4.2 to 5.7.0 ( #2528 )
...
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.4.2 to 5.7.0.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.4.2...v5.7.0 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-29 16:28:53 -07:00
75de1708ca
chore(deps): bump google.golang.org/api from 0.121.0 to 0.124.0 ( #2535 )
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.121.0 to 0.124.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.121.0...v0.124.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-29 14:38:24 -07:00
25ac0755a0
chore(deps): bump github.com/moby/buildkit from 0.11.4 to 0.11.6 ( #2520 )
...
Bumps [github.com/moby/buildkit](https://github.com/moby/buildkit ) from 0.11.4 to 0.11.6.
- [Release notes](https://github.com/moby/buildkit/releases )
- [Commits](https://github.com/moby/buildkit/compare/v0.11.4...v0.11.6 )
---
updated-dependencies:
- dependency-name: github.com/moby/buildkit
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-29 13:50:12 -07:00
47eab89261
chore(deps): bump actions/setup-go from 3.2.0 to 4.0.1 ( #2517 )
...
* chore(deps): bump actions/setup-go from 3.2.0 to 4.0.1
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.2.0 to 4.0.1.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](b22fbbc292...fac708d667
2023-05-29 13:47:09 -07:00
83311d7a8f
chore(deps): bump sigstore/cosign-installer from 3.0.3 to 3.0.5 ( #2518 )
...
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) from 3.0.3 to 3.0.5.
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](204a51a57a...dd6b2e2b61
2023-05-29 01:44:06 -07:00
c555bbb54d
chore(deps): bump docker/setup-buildx-action from 2.0.0 to 2.5.0 ( #2519 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2.0.0 to 2.5.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](dc7b9719a9...4b4e9c3e2d
2023-05-29 01:39:54 -07:00
7d256a35b6
chore(deps): bump github.com/containerd/containerd from 1.7.0 to 1.7.1 ( #2534 )
...
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd ) from 1.7.0 to 1.7.1.
- [Release notes](https://github.com/containerd/containerd/releases )
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md )
- [Commits](https://github.com/containerd/containerd/compare/v1.7.0...v1.7.1 )
---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-29 01:38:52 -07:00
90fe22bc2e
fix: paths deduplication while resolving symlinks ( #2504 )
...
Closes #2381
2023-05-29 01:37:20 -07:00
43d2eafcf2
chore(release): release v1.10.0 ( #2529 )
2023-05-24 18:36:02 -07:00
4296ca5055
chore(deps): bump github.com/sirupsen/logrus from 1.9.0 to 1.9.2 ( #2522 )
...
Bumps [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus ) from 1.9.0 to 1.9.2.
- [Release notes](https://github.com/sirupsen/logrus/releases )
- [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sirupsen/logrus/compare/v1.9.0...v1.9.2 )
---
updated-dependencies:
- dependency-name: github.com/sirupsen/logrus
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-23 16:13:53 -07:00
74b2b6c9ef
chore(deps): bump github.com/otiai10/copy from 1.7.0 to 1.11.0 ( #2523 )
...
Bumps [github.com/otiai10/copy](https://github.com/otiai10/copy ) from 1.7.0 to 1.11.0.
- [Release notes](https://github.com/otiai10/copy/releases )
- [Commits](https://github.com/otiai10/copy/compare/v1.7.0...v1.11.0 )
---
updated-dependencies:
- dependency-name: github.com/otiai10/copy
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-23 16:13:34 -07:00
b4f3885a92
chore: Revert "chore(deps): bump google-github-actions/setup-gcloud from 0.5.1 to 1.1.1 ( #2502 )" ( #2524 )
...
This reverts commit 4db5ca9ffa
2023-05-23 11:13:07 -07:00
0f40a810d1
Light editing to scripts in hack/gofmt ( #2236 )
...
* Update gofmt.sh
Removed duplicate shebang interpreter directive: `#!/bin/bash`
* Update boilerplate.sh
Removed duplicate shebang interpreter directive.
2023-05-19 16:58:02 -07:00
197fbdd705
chore(deps): bump golang from 1.19 to 1.20 in /deploy ( #2388 )
...
Bumps golang from 1.19 to 1.20.
---
updated-dependencies:
- dependency-name: golang
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-18 15:59:59 -07:00
8d975f346f
chore(deps): bump imjasonh/setup-crane from 0.1 to 0.3 ( #2401 )
...
Bumps [imjasonh/setup-crane](https://github.com/imjasonh/setup-crane ) from 0.1 to 0.3.
- [Release notes](https://github.com/imjasonh/setup-crane/releases )
- [Commits](5146f708a8...00c9e93efa
2023-05-18 15:59:36 -07:00
4ac31a913c
chore(deps): bump golang.org/x/sync from 0.1.0 to 0.2.0 ( #2497 )
...
Bumps [golang.org/x/sync](https://github.com/golang/sync ) from 0.1.0 to 0.2.0.
- [Commits](https://github.com/golang/sync/compare/v0.1.0...v0.2.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/sync
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-18 15:59:09 -07:00
e4622a594e
fix: Correct deprecated flags in `README.md` ( #2335 )
...
* fix: Correct deprecated flags in `README.md`
* Update README.md
---------
Co-authored-by: Aaron Prindle <aprindle@google.com>
2023-05-18 14:37:57 -07:00
7525828ef9
Add mTLS (client cert) registry authentication ( #2180 )
...
* Add mTLS (client cert) support
Add support for Mutual TLS (mTLS) client certificate authentication.
The expected format of the new --registry-client-cert flag is the same
as the existing --registry-certificate flag, which will allow
different client certificates for different registries:
--registry-client-cert my.registry.url=/path/to/cert.crt,/path/to/key.key
* tidy: Rename mTLS (Client Cert) flag to be in line with others
This flag didn't describe that it was for the client certs uses with
the registry. Although this should be reasonably obvious, I like the
consistency with the other registry flag.
* test: Added unit tests for mTLS (Client Cert) loading
* test: Add 2 more tests for comma split formatting
since the comma splitting is a new portion of code let's make sure
that that format works well too in other cases
* tidy: Fix formatting of flag help text
* tidy: Made invalid cert format error consistent
I was running the tests and saw the message:
Failed to load client certificate/key '/path/to/client/certificate.cert' for my.registry.name, format is my.registry.name=/path/to/cert,/path/to/key
I then realized that it'd be a lot nicer if this showed the user what
they input, and how they should change it (rather than decomposing it:
Failed to load client certificate/key 'my.registry.name=/path/to/client/certificate.cert', expected format: my.registry.name=/path/to/cert,/path/to/key
* test: Fixed incorrect test argument
This didn't fail the test before because it's only attempting to show
that certs only get loaded and used for their associated registry but
it's important to keep this correct.
This case is covered by the test below, "RegistriesClientCertificates
incorrect cert format"
* doc: Add new flag to README.md
* mod: Fail to push if there was a problem loading client certs
Rather than warning that there was an issue, we should fail if the
requested client certificates were not found or failed to load.
This feels a lot better than waiting for the build to finish then
failing later.
* mod: Return an error if the certificate authority fails to load, just like client certs
The MakeTransport function was changed in the previous commit to
allow returning errors if there was a problem loading certificates,
rather than just print warnings.
This feels a lot better as you get the error immediately that there's
a problem to fix, rather than getting a warning, then later an error
that the server's certificate could not be verified.
* tidy: fix golint issues
2023-05-18 14:20:51 -07:00
73c50bfff4
chore(deps): bump docker/setup-qemu-action from 1.2.0 to 2.1.0 ( #2287 )
...
* chore(deps): bump docker/setup-qemu-action from 1.2.0 to 2.1.0
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) from 1.2.0 to 2.1.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](27d0a4f181...e81a89b173
2023-05-18 13:31:04 -07:00
dc053ff3a9
Delete scorecards-analysis.yml ( #2510 )
2023-05-18 13:30:19 -07:00
f77610360e
chore(deps): bump docker/build-push-action from 3.2.0 to 4.0.0 ( #2505 )
...
* chore(deps): bump docker/build-push-action from 3.2.0 to 4.0.0
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 3.2.0 to 4.0.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](c56af95754...3b5e8027fc
2023-05-17 16:06:04 -07:00
70120dd548
chore(deps): bump github.com/docker/distribution ( #2503 )
...
Bumps [github.com/docker/distribution](https://github.com/docker/distribution ) from 2.8.1+incompatible to 2.8.2+incompatible.
- [Release notes](https://github.com/docker/distribution/releases )
- [Commits](https://github.com/docker/distribution/compare/v2.8.1...v2.8.2 )
---
updated-dependencies:
- dependency-name: github.com/docker/distribution
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-17 16:05:36 -07:00
7f718c262e
chore(deps): bump ossf/scorecard-action from 1.1.1 to 2.1.3 ( #2506 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 1.1.1 to 2.1.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](3e15ea8318...80e868c13c
2023-05-16 00:43:44 -07:00
7cc3b2a9fc
chore(deps): bump golang.org/x/sys from 0.7.0 to 0.8.0 ( #2507 )
...
Bumps [golang.org/x/sys](https://github.com/golang/sys ) from 0.7.0 to 0.8.0.
- [Commits](https://github.com/golang/sys/compare/v0.7.0...v0.8.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/sys
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-16 00:43:01 -07:00
5792a72413
chore(deps): bump github.com/google/go-containerregistry ( #2508 )
...
Bumps [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry ) from 0.14.0 to 0.15.1.
- [Release notes](https://github.com/google/go-containerregistry/releases )
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml )
- [Commits](https://github.com/google/go-containerregistry/compare/v0.14.0...v0.15.1 )
---
updated-dependencies:
- dependency-name: github.com/google/go-containerregistry
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-16 00:42:29 -07:00
8469f7f105
chore(deps): bump github.com/google/slowjam from 1.0.0 to 1.0.1 ( #2498 )
...
Bumps [github.com/google/slowjam](https://github.com/google/slowjam ) from 1.0.0 to 1.0.1.
- [Release notes](https://github.com/google/slowjam/releases )
- [Commits](https://github.com/google/slowjam/compare/v1.0.0...v1.0.1 )
---
updated-dependencies:
- dependency-name: github.com/google/slowjam
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-11 09:47:05 -07:00
4db5ca9ffa
chore(deps): bump google-github-actions/setup-gcloud from 0.5.1 to 1.1.1 ( #2502 )
...
Bumps [google-github-actions/setup-gcloud](https://github.com/google-github-actions/setup-gcloud ) from 0.5.1 to 1.1.1.
- [Release notes](https://github.com/google-github-actions/setup-gcloud/releases )
- [Changelog](https://github.com/google-github-actions/setup-gcloud/blob/main/CHANGELOG.md )
- [Commits](04141d8a7e...e30db14379
2023-05-11 09:46:17 -07:00
77b06dc3e0
chore: add .vscode/ dir to .gitignore ( #2501 )
2023-05-11 12:30:07 -04:00
123ad4a529
chore(deps): bump sigstore/cosign-installer from 3.0.1 to 3.0.3 ( #2495 )
...
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) from 3.0.1 to 3.0.3.
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](c3667d9942...204a51a57a
2023-05-10 22:51:57 -07:00
b4495bcc3b
chore(deps): bump google.golang.org/api from 0.120.0 to 0.121.0 ( #2496 )
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.120.0 to 0.121.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.120.0...v0.121.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-10 22:51:32 -07:00
0514e4df6b
chore(deps): bump github.com/spf13/afero from 1.9.2 to 1.9.5 ( #2448 )
...
Bumps [github.com/spf13/afero](https://github.com/spf13/afero ) from 1.9.2 to 1.9.5.
- [Release notes](https://github.com/spf13/afero/releases )
- [Commits](https://github.com/spf13/afero/compare/v1.9.2...v1.9.5 )
---
updated-dependencies:
- dependency-name: github.com/spf13/afero
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-10 16:41:13 -07:00
74fc5403c3
chore(deps): bump google.golang.org/api from 0.110.0 to 0.120.0 ( #2484 )
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.110.0 to 0.120.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.110.0...v0.120.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-05 15:52:07 -07:00
eb817932b4
chore(deps): bump github/codeql-action from 2.1.8 to 2.3.2 ( #2487 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.8 to 2.3.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](1ed1437484...f3feb00acb
2023-05-05 15:51:18 -07:00
b2076ae256
chore(deps): bump github.com/docker/docker ( #2489 )
...
Bumps [github.com/docker/docker](https://github.com/docker/docker ) from 23.0.1+incompatible to 23.0.5+incompatible.
- [Release notes](https://github.com/docker/docker/releases )
- [Commits](https://github.com/docker/docker/compare/v23.0.1...v23.0.5 )
---
updated-dependencies:
- dependency-name: github.com/docker/docker
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-02 09:36:29 -07:00
1f9852987e
chore(deps): bump github.com/aws/aws-sdk-go from 1.44.24 to 1.44.253 ( #2490 )
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.44.24 to 1.44.253.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.24...v1.44.253 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-02 09:36:00 -07:00
0b53835c0f
fix: use debian buster to fix tests using no longer supported stretch which had broken apt-get urls ( #2485 )
2023-04-27 22:05:37 -04:00
ef83d80a62
chore(deps): bump google.golang.org/protobuf from 1.29.0 to 1.29.1 ( #2442 )
...
Bumps [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go ) from 1.29.0 to 1.29.1.
- [Release notes](https://github.com/protocolbuffers/protobuf-go/releases )
- [Changelog](https://github.com/protocolbuffers/protobuf-go/blob/master/release.bash )
- [Commits](https://github.com/protocolbuffers/protobuf-go/compare/v1.29.0...v1.29.1 )
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-25 16:45:41 -07:00
24846d22b1
Use correct media type for zstd layers ( #2459 )
...
In my previous commits I forgot to override the media type for layers that are using zstd compression.
2023-04-03 11:34:26 -04:00
76afb70790
Add support for zstd compression ( #2313 )
...
* Add support for configurable compression algorithm (gzip, zstd) and compression level
We want to make the layer compression in kaniko configurable, so we have added two optional command line arguments “--compression” and “--compression-level”. The former allows the user to specify a compression algorithm (zstd, gzip) and the latter can be used to specify the compression level.
Depending on the selected compression algorithm and level we modify the set of layerOptions that are used to create tarball layers in `push.go` and `build.go`.
The actual implementation of the zstd support can be found in our fork of the go-containerregistry package for which we have filed this PR: google/go-containerregistry#1487
The changes should be fully backwards compatible.
* Restrict inputs for compression flag to gzip and zstd
This change will ensure that users can only specify supported compression algorithms (`zstd`, `gzip`) to the `--compression` flag.
* Fix incorrect type for switch statements on config.Compression
2023-04-01 22:25:25 -04:00
1aaf231c75
chore(deps): bump github.com/opencontainers/runc from 1.1.4 to 1.1.5 ( #2453 )
...
Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc ) from 1.1.4 to 1.1.5.
- [Release notes](https://github.com/opencontainers/runc/releases )
- [Changelog](https://github.com/opencontainers/runc/blob/v1.1.5/CHANGELOG.md )
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.4...v1.1.5 )
---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-29 13:04:01 -04:00
5690c33246
Release v1.9.2 ( #2450 )
...
Signed-off-by: Chuang Wang <chuangw@google.com>
2023-03-27 10:38:11 -04:00
906cc96b59
Upgrade docker ( #2440 )
...
* somehow now the only thing that doesnt work is devices.Device
Signed-off-by: Joe Kimmel <jkimmel@vmware.com>
* this gets rid of all the compiler errors in the vendored code
Signed-off-by: Joe Kimmel <jkimmel@vmware.com>
* fixed some things but a bunch of tests and maybe some compiler steps are still failing
Signed-off-by: Joe Kimmel <jkimmel@vmware.com>
* all the things i figured out how to fix so far
Signed-off-by: Joe Kimmel <jkimmel@vmware.com>
* guess i had to redo go mods after rebasing again
Signed-off-by: Joe Kimmel <jkimmel@vmware.com>
* update docker constants to be SHOUTY CASE now
Signed-off-by: Joe Kimmel <jkimmel@vmware.com>
* include DestPath in resolveEnv
Signed-off-by: Joe Kimmel <jkimmel@vmware.com>
* fix one mistake in Docker lib upgrade and some typos/deprecations in the file
Signed-off-by: Joe Kimmel <jkimmel@vmware.com>
* last changes (hopefully) to update to new docker libs
Signed-off-by: Joe Kimmel <jkimmel@vmware.com>
---------
Signed-off-by: Joe Kimmel <jkimmel@vmware.com>
2023-03-23 20:34:25 -04:00
86a73c5439
Update ACR credential helper to enable Azure Workload Identity ( #2431 )
...
* Bump the version of ACR credential helper to enable Azure Workload Identity
* Bump ACR credential helper version in go.mod
* remove garbage
* Update vendor
2023-03-22 12:25:54 -04:00
6ca4c4b55b
bump cosign version used to sign images ( #2437 )
...
Signed-off-by: Jason Hall <jason@chainguard.dev>
2023-03-21 18:26:41 -04:00
0cbb7664de
fix(executor): make pax tar builds reproducible again ( #2384 )
...
In v1.8.0 (commit 7410007
2023-03-21 18:08:29 -04:00
14ea7c4071
Fix Integration tests ( #2425 )
...
* fix(ci): Bump golangci-lint to 1.51.1
* chore(lint): fix gofmt and goimport issues
* chore(lint): fix linter issues
- Adapted error comparison according to linter recommendation
- Disabled noctx linting for http request where canceling makes no sense
- Disabled nilerror linting where nil error is returned on purpose
- Disabled makezero linter where slice is explicitly deepcopied
* chore(ci): Update go version in tests workflows
* fix(ci): Allow boilerplate years from 2000-2099
Previously the regex only allowed the copyright notice to contain the
years 2018,2019,2020,2021, or 2022. This commit widens to regex to
20\d\d allowing any year in the range [2000-2099]
* feat(ci): Replace minikube with k3s for intregration tests
The existing setup for minikube is very complicated, replicating most of
the setup steps for a full kubernetes cluster in an only partially
supported minikube configuration (driver=none). Furthermore the existing
setup has been broken for sometime, likely, at least in part due to the
changes to CNI and CRI in recent kubernetes versions.
Since what we actually need is only a running Kubernetes cluster on the
node and access to a registry on localhost:5000, we can switch the
extremely complicated minikube setup for a lightweight cluster using
k3s. Minikube came with a default addon for running a registry on every
node, but the same is not the case for k3s, instead we make use of the
package helm controller and its HelmChart CR to deploy twuni/docker-registry.helm
and expose it on localhost using the integrated LoadBalancer controller.
* fix(test-684): pin base container version
The dockerfile for the regression test connected to issue 684 used a
rolling tag as base image, making it flaky and fail since it was
introduced.
This commit pins the base image to the digest of bionic-20200219, which,
based on the date of the commit that introduced to the dockerfile would
be the most newest ubuntu build and likely what the "rolling" tag
resolved to back then. Since this also an image from the pre-oci days of
ubuntu, this circumvents a bug in container-diff as well
(https://github.com/GoogleContainerTools/container-diff/issues/389 )
2023-03-21 12:30:54 -04:00
fe2413e6e3
chore(deps): bump golang from 1.17 to 1.19 in /deploy ( #2328 )
2022-12-23 11:48:03 -05:00
cf9a334cb0
chore: fix typo ( #2316 )
2022-11-10 12:35:15 -05:00
Aaron Prindle
dependabot[bot]
Fedor V
Mark Moretto
Gabriel Nützi
Eric
Jason Hall
Lavrenti Frobeen
Lavrenti Frobeen
Chuang Wang
Joe Kimmel
Viacheslav Artamonov
Joël Pepper
Joël Pepper
Jerry Jones