fd624fb7f6
Bump github.com/aws/aws-sdk-go from 1.42.44 to 1.42.47 ( #1923 )
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.42.44 to 1.42.47.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.42.44...v1.42.47 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-02-06 22:22:21 -05:00
c225df4fba
Bump cloud.google.com/go/storage from 1.19.0 to 1.20.0 ( #1924 )
...
Bumps [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go ) from 1.19.0 to 1.20.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/spanner/v1.19.0...spanner/v1.20.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/storage
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-02-06 22:22:04 -05:00
c8445c1db2
Bump ossf/scorecard-action from 1.0.2 to 1.0.3 ( #1926 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 1.0.2 to 1.0.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Commits](c8416b0b2b...b614d455ee
2022-02-06 22:21:37 -05:00
331e077a12
Bump google-github-actions/setup-gcloud from 0.4.0 to 0.5.0 ( #1925 )
...
Bumps [google-github-actions/setup-gcloud](https://github.com/google-github-actions/setup-gcloud ) from 0.4.0 to 0.5.0.
- [Release notes](https://github.com/google-github-actions/setup-gcloud/releases )
- [Changelog](https://github.com/google-github-actions/setup-gcloud/blob/master/CHANGELOG.md )
- [Commits](https://github.com/google-github-actions/setup-gcloud/compare/v0.4.0...v0.5.0 )
---
updated-dependencies:
- dependency-name: google-github-actions/setup-gcloud
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-02-06 22:21:27 -05:00
bd5f95859a
Bump github/codeql-action from 1.0.30 to 1.0.31 ( #1927 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 1.0.30 to 1.0.31.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](8b37404d56...1a927e9307
2022-02-06 21:15:51 -05:00
d0fe83024c
fixes #1913 ( #1914 )
2022-02-02 21:13:39 -05:00
ddd1485df7
adding ppc64le support for execitor and warmer image ( #1908 )
...
Signed-off-by: Aaruni Aggarwal <aaruniagg@gmail.com>
2022-02-02 16:24:19 -05:00
bde904349e
Remove deploy/cloudbuild-*.yaml files ( #1907 )
2022-01-31 18:35:25 -05:00
ff3ee40293
Bump go-containerregistry to pick up ACR fix ( #1898 )
2022-01-31 12:04:15 -05:00
9ec7ab2d21
Bump cloud.google.com/go/storage from 1.18.2 to 1.19.0 ( #1903 )
...
Bumps [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go ) from 1.18.2 to 1.19.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/storage/v1.18.2...spanner/v1.19.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/storage
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-01-31 04:10:27 -05:00
025f42977f
Bump github.com/aws/aws-sdk-go from 1.42.38 to 1.42.44 ( #1902 )
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.42.38 to 1.42.44.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.42.38...v1.42.44 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-01-31 04:04:36 -05:00
7d8e500413
Bump ossf/scorecard-action ( #1899 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 5da1b6b2680a229f2e66131f5c6a692bcd80b246 to 1.0.2. This release includes the previously tagged commit.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Commits](5da1b6b268...c8416b0b2b
2022-01-31 04:04:17 -05:00
71642e9f9b
Bump google-github-actions/setup-gcloud from 0.3.0 to 0.4.0 ( #1900 )
...
Bumps [google-github-actions/setup-gcloud](https://github.com/google-github-actions/setup-gcloud ) from 0.3.0 to 0.4.0.
- [Release notes](https://github.com/google-github-actions/setup-gcloud/releases )
- [Changelog](https://github.com/google-github-actions/setup-gcloud/blob/master/CHANGELOG.md )
- [Commits](https://github.com/google-github-actions/setup-gcloud/compare/v0.3.0...v0.4.0 )
---
updated-dependencies:
- dependency-name: google-github-actions/setup-gcloud
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-01-31 04:04:05 -05:00
794e9d1834
Bump github/codeql-action from 1.0.26 to 1.0.30 ( #1901 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 1.0.26 to 1.0.30.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](5f53256358...8b37404d56
2022-01-31 04:03:53 -05:00
e3a4ea4174
Enable dependabot for Go and GitHub Actions dependencies ( #1884 )
2022-01-30 22:40:10 -05:00
87bed1417f
Update readme ( #1897 )
...
Describes work-around for #1803 - add an example of how to work around issues encountered out of the box when trying to pass build-args that contain spaces in their values
2022-01-28 14:51:08 -05:00
a7425d1fd0
Remove k8schain, statically link helpers ( #1891 )
2022-01-21 12:42:12 -08:00
6bbd8a331c
Bump deps ( #1885 )
...
```
* use go 1.17 semantics in go.mod
* pin tonistiigi/fsutil dep to match docker/docker's dep
go get -u ./...
go mod vendor
```
2022-01-21 13:59:16 -05:00
a59970f4ac
go get golang.org/x/oauth2/google && go mod vendor ( #1890 )
...
fixes #1889
2022-01-21 11:40:08 -05:00
76624697df
Bump github.com/docker/docker to latest release ( #1866 )
...
* Bump github.com/docker/docker to latest release
* Pin deps to docker/docker's requirements
fix build breakages
fix unit test
Trying to see whether am-i-in-a-container checks are broken for integration tests...
2022-01-14 15:58:32 -05:00
d587122a9d
Run GitHub Actions on pushes and PRs to main, not master ( #1883 )
...
* Run GitHub Actions on pushes and PRs to main, not master
* fix go install ecr-login, bump to latest v0.6.0
* master -> main in some integration tests
* skip no-ref integration test
2022-01-14 14:54:12 -05:00
1a6b8ce37b
Add KANIKO_REGISTRY_MIRROR env var ( #1875 )
2022-01-14 10:07:55 -06:00
0f986a423f
Bump AWS ecr-login cred helper to v0.5.0 ( #1880 )
2022-01-14 10:07:14 -06:00
986121553b
Pin to more recent version of scorecard ( #1878 )
2022-01-11 10:42:21 -08:00
ae2c269cc0
Add scorecard analysis to kaniko ( #1874 )
2022-01-11 10:24:55 -08:00
dac411f7d6
Attempt to fix erroneous build cancellation ( #1867 )
2022-01-06 14:21:58 -05:00
ccaa38d31f
Add s390x support to docker images ( #1749 )
...
* Add s390x support to docker images
1. add s390x support to docker images `executor`, `executor(slim)`,
`executor(debug)` and `warmer`. Fixes #1462 and #1665 .
2. Address the building issue of dependency `docker-credential-gcr`
in Dockerfiles. This issue was introduced when recent commits
in `docker-credential-gcr` removed the Makefile.
Signed-off-by: Kun-Lu <kun.lu@ibm.com>
* Add s390x support to all images except debug image
* Add s390x support to images.yaml
* Fix ld64.so.1 not found issue on s390x
* Add a comment for copying /lib from busybox container on s390x
2022-01-06 11:19:26 -05:00
ee2249b3d5
fix: ARG/ENV used in script does not invalidate build cache ( #1688 ) ( #1693 )
2021-12-30 12:51:00 -05:00
e62c80ed19
fix: change the name of the acr cred helper ( #1865 )
...
Signed-off-by: ankitm123 <ankitmohapatra123@gmail.com>
2021-12-29 08:28:32 -05:00
633f555c5c
Fix implicit GCR auth ( #1856 )
...
* Fix implicit GCR auth
* boilerplate
2021-12-28 20:34:32 -05:00
129df249c9
Log full image ref by digest when pushing an image ( #1857 )
2021-12-28 07:13:11 -06:00
7207dca03a
Remove GitHub Actions concurrency limits ( #1858 )
2021-12-27 15:08:05 -05:00
2ea368dde8
tar: read directly from stdin ( #1728 )
...
* tar: run directly from stdin
* export UnTar function
2021-12-26 07:09:26 -05:00
d2f3e896cd
Fix regression: can fetch branches and tags references without specifying commit hashes for private git repository used as context ( #1823 )
...
* [FIX] can fetch tags and branches refs without specifying commit hashes
* [ENH] more precise comment
2021-12-24 15:13:45 -05:00
e38b0c8d90
Fix calculating path for copying ownership ( #1859 )
...
* Fix calculating path for copying ownership
* fix CI
2021-12-24 07:09:53 -05:00
7065921aa4
Fix copying ownership ( #1725 )
...
* fix uid, gid overriding
* fix ownership for staging building
* add integration test
* add check for ignored files
* improve errors
2021-12-23 13:25:55 -05:00
54395fc944
Fix typo ( #1825 )
2021-12-23 12:03:20 -05:00
ac1a703731
Fix possible nil pointer derefence in fs_util.go ( #1813 )
...
When os.Stat returns an error different from ErrNotExist,
mkdirAllWithPermissions may panic with a nil pointer
derefence due to insufficient error checking.
Avoid the panic by bailing out, returning the error to the
caller.
2021-12-23 11:37:27 -05:00
b3ec974cfc
include auth when fetching specific specs ( #1796 )
...
Signed-off-by: ygelfand <yuri@shlitz.com>
2021-12-23 11:36:19 -05:00
2cb0387758
Fix broken anchor link ( #1804 )
2021-12-23 11:35:21 -05:00
ee95be1e27
Use pax tar format ( #1809 )
...
* Use PAX tar format
* Add test case
2021-12-23 11:35:00 -05:00
7ae8e7d740
Update readme insecure flags ( #1811 )
...
* Clarify usage of --skip-tls-verify-registry argument
Referring to --skip-tls-verify-registry as a "flag" is misleading since
command line flags usually require no value. Thus, the documentation
is updated to match the behavior of the command line argument.
* Clarify usage of --insecure-registry argument
Referring to --insecure-registry as a "flag" is misleading since
command line flags usually require no value. Thus, the documentation
is updated to match the behavior of the command line argument.
2021-12-23 11:32:39 -05:00
840923b798
add documentation on ACR cred helper ( #1831 )
2021-12-23 11:32:17 -05:00
5c81fa5774
Fixes #1837 : keep file capabilities on archival ( #1838 )
...
Signed-off-by: JACQUES Francois <hypnoce@donarproject.org>
2021-12-22 20:05:39 -05:00
17f5e55530
Use setup-gcloud@v0.3.0 instead of @master ( #1854 )
2021-12-22 20:04:49 -05:00
59c2d2d08f
Collapse integration test workflows into one config ( #1855 )
...
* Collapse integration test workflows into one config
Remove last traces of Travis, including env vars and `make travis-setup`
and badges in README
* fix lint
* make integration tests pass on PRs
2021-12-22 20:04:40 -05:00
b1b6962726
Share the Go build cache when building in Dockerfiles ( #1853 )
...
On my machine this makes image rebuilds go from ~5m to 1.5s.
This also required setting DOCKER_BUILDKIT=1 in integration test image
builds.
I also took the opportunity to bump the Go version used in those tests
to Go 1.17 to match the image build processes, and tidied up the
workflow files a bit too (renaming for consistency, typos, whitespace,
etc.)
2021-12-22 12:43:12 -05:00
710650da73
Call cosign sign --key ( #1849 )
2021-12-21 12:40:06 -05:00
6e500ecad9
Consolidate PR and real release workflows ( #1845 )
...
* WIP: consolidate PR and real release workflows
- push and sign an image tagged for every push to the repo (e.g., merged PRs)
- push and sign for tag pushes, with release tags
- build but don't push for opened PRs
WIP because I need to test more with the tag flow, but pushes worked in
my fork.
* apply release tags, uncomment kms stuff
* Tag images correctly during releases
* review feedback
2021-12-20 22:02:12 -05:00
f694212385
Use golang:1.17 and build from reproducible source ( #1848 )
...
* cleanup: Correctly use buildx TARGETARCH
* undo changes to Go version
* Use golang:1.17 and build from reproducible source
This change updates the Go version used to build kaniko and credential
helpers to Go 1.17, which uses Go modules by default. This means that we
can build outside of $GOPATH, from source fetched from the Go module
proxy.
This change also simplfies our builds of credential helpers to simply
`go install` them at a pinned version, for reproducibility and
simplicity.
This also changes `make images` and `make push` to build and push the
slim executor image as well.
2021-12-20 22:01:37 -05:00
dependabot[bot]
Adrian Newby
Aaruni Aggarwal
Jason Hall
Pat Litke
Herman
priyawadhwa
Kun Lu
Dawei Ma
ankitm123
Andrei Kvapil
Guillaume Calmettes
jeunii
Lars Seipel
ygelfand
Sebastiaan Tammer
Travis DePrato
Bernardo Marques
Dávid Szakállas
François JACQUES