Skip to content

Try installing wolfictl from the latest SDK container instead #3437

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
kaniini merged 1 commit into from
Jul 6, 2023
Merged

Try installing wolfictl from the latest SDK container instead #3437

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
14 changes: 10 additions & 4 deletions .github/workflows/ci-build.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,8 +7,6 @@ on:
branches:
- gh-readonly-queue/main/**

env:
WOLFICTL: "docker run -t --rm --entrypoint=wolfictl ghcr.io/wolfi-dev/sdk:latest@sha256:fd8c71214f6455c75ec44ae99eb9f7ffc85f260ccce69d4367eb2e5d568facd9 wolfictl"
jobs:
changes:
name: Determine packages to test building
Expand All @@ -25,18 +23,26 @@ jobs:
with:
files: ./*.yaml

- name: "Install wolfictl onto PATH"
run: |
# Copy wolfictl out of the wolfictl image and onto PATH
TMP=$(mktemp -d)
docker run --rm -i -v $TMP:/out --entrypoint /bin/sh ghcr.io/wolfi-dev/sdk:latest@sha256:fd8c71214f6455c75ec44ae99eb9f7ffc85f260ccce69d4367eb2e5d568facd9 -c "cp /usr/bin/wolfictl /out"
echo "$TMP" >> $GITHUB_PATH

# Assuming that we have a list of changed files such as `foo.yaml` and `bar.yaml`, this
# strips the list down into `foo` and `bar`.
- name: Build package list
id: package-list
run: |
printf "packages=" >> $GITHUB_OUTPUT

make list | while read pkg; do
wolfictl text -t name > packages-list
while read pkg; do
for file in ${{ steps.changes.outputs.all_changed_files }}; do
[ "${file%.yaml}" = "$pkg" ] && printf "%s " ${file%.yaml} >> $GITHUB_OUTPUT
done
done
done < packages-list

printf "\n" >> $GITHUB_OUTPUT

Expand Down
9 changes: 7 additions & 2 deletions .github/workflows/push-production.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,8 +10,6 @@ on:
concurrency:
group: x86-${{ github.ref }}

env:
WOLFICTL: "docker run -t --rm --entrypoint=wolfictl ghcr.io/wolfi-dev/sdk:latest@sha256:fd8c71214f6455c75ec44ae99eb9f7ffc85f260ccce69d4367eb2e5d568facd9 wolfictl"
jobs:
build:
name: Build OS packages
Expand Down Expand Up @@ -66,6 +64,13 @@ jobs:
gsutil -m rsync -r gs://wolfi-production-registry-destination/os/x86_64/ "${{ github.workspace }}/packages/x86_64/"
find "${{ github.workspace }}/packages" -print -exec touch \{} \;

- name: "Install wolfictl onto PATH"
run: |
# Copy wolfictl out of the wolfictl image and onto PATH
TMP=$(mktemp -d)
docker run --rm -i -v $TMP:/out --entrypoint /bin/sh ghcr.io/wolfi-dev/sdk:latest@sha256:fd8c71214f6455c75ec44ae99eb9f7ffc85f260ccce69d4367eb2e5d568facd9 -c "cp /usr/bin/wolfictl /out"
echo "$TMP" >> $GITHUB_PATH

- name: 'Build Wolfi'
run: |
make MELANGE="sudo -E melange" MELANGE_DIR=/usr/share/melange KEY=wolfi-signing.rsa REPO="${{ github.workspace }}/packages" -j1
Expand Down
2 changes: 1 addition & 1 deletion ko.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
package:
name: ko
version: 0.14.1 # When bumping the version check if the GHSA mitigations below can be removed.
epoch: 0
epoch: 1
description: Simple, fast container image builder for Go applications.
copyright:
- license: Apache-2.0
Expand Down