Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore: pin docker images by hash #12517

Merged
merged 5 commits into from
Mar 9, 2023
Merged

chore: pin docker images by hash #12517

merged 5 commits into from
Mar 9, 2023

Conversation

crenshaw-dev
Copy link
Member

Note on DCO:

If the DCO action in the integration test fails, one or more of your commits are not signed off. Please click on the Details link next to the DCO action for instructions on how to resolve this.

Checklist:

  • Either (a) I've created an enhancement proposal and discussed it with the community, (b) this is a bug fix, or (c) this does not need to be in the release notes.
  • The title of the PR states what changed and the related issues number (used for the release note).
  • I've included "Closes [ISSUE #]" or "Fixes [ISSUE #]" in the description to automatically close the associated issue.
  • I've updated both the CLI and UI to expose my feature, or I plan to submit a second PR with them.
  • Does this PR require documentation updates?
  • I've updated documentation as required by this PR.
  • Optional. My organization is added to USERS.md.
  • I have signed off all my commits as required by DCO
  • I have written unit and/or e2e tests for my change. PRs without these are unlikely to be merged.
  • My build is green (troubleshooting builds).

@crenshaw-dev
chore: pin docker images by hash
a483da1 
Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com>
34fathombelow
34fathombelow requested changes Feb 25, 2023
View reviewed changes
Copy link
Member

@34fathombelow 34fathombelow left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

All other changes look good.

Dockerfile Outdated Show resolved Hide resolved
Dockerfile Outdated Show resolved Hide resolved
Dockerfile Outdated Show resolved Hide resolved
test/container/Dockerfile Outdated Show resolved Hide resolved
test/container/Dockerfile Outdated Show resolved Hide resolved
test/container/Dockerfile Outdated Show resolved Hide resolved
test/remote/Dockerfile Outdated Show resolved Hide resolved
ui-test/Dockerfile Outdated Show resolved Hide resolved
.github/dependabot.yml Show resolved Hide resolved
@crenshaw-dev @34fathombelow
Apply suggestions from code review
9b2becf 
Co-authored-by: Justin Marquis <34fathombelow@protonmail.com>
Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com>
@crenshaw-dev
Update test/container/Dockerfile
08e9eb2 
Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com>
@crenshaw-dev crenshaw-dev marked this pull request as ready for review March 8, 2023 15:59
@crenshaw-dev
Merge remote-tracking branch 'origin/master' into pin-docker-dependen…
9b6ddeb 
…cies

Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com>
@crenshaw-dev
dependabot for each dir
d1e17f5 
Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com>
34fathombelow
34fathombelow approved these changes Mar 8, 2023
View reviewed changes
Copy link
Member

@34fathombelow 34fathombelow left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Lgtm

Just note we need to be cautious when dependabot recommends updates for Golang and node versions. We should limit these to patch or minor versions.

@codecov
Copy link

codecov bot commented Mar 8, 2023

Codecov Report

Patch and project coverage have no change.

Comparison is base (7b74e19) 47.79% compared to head (d1e17f5) 47.79%.

Additional details and impacted files 
@@           Coverage Diff           @@
##           master   #12517   +/-   ##
=======================================
  Coverage   47.79%   47.79%           
=======================================
  Files         246      246           
  Lines       41980    41980           
=======================================
  Hits        20064    20064           
  Misses      19916    19916           
  Partials     2000     2000

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.

jannfis
jannfis approved these changes Mar 9, 2023
View reviewed changes
Copy link
Member

@jannfis jannfis left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

@jannfis jannfis merged commit f6e3139 into argoproj:master Mar 9, 2023
yyzxw pushed a commit to yyzxw/argo-cd that referenced this pull request Aug 9, 2023
@crenshaw-dev @34fathombelow
chore: pin docker images by hash (argoproj#12517)
2d4081c 
* chore: pin docker images by hash

Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: Justin Marquis <34fathombelow@protonmail.com>
Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com>

* Update test/container/Dockerfile

Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com>

* dependabot for each dir

Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com>

---------

Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com>
Co-authored-by: Justin Marquis <34fathombelow@protonmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@34fathombelow 34fathombelow 34fathombelow approved these changes

@jannfis jannfis jannfis approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@crenshaw-dev @jannfis @34fathombelow