From 402e361b60859966099eed7ca88ee3fbd2bd0c2a Mon Sep 17 00:00:00 2001 From: Grunet Date: Sun, 10 Sep 2023 20:32:38 -0500 Subject: [PATCH] update base images (#75) --- .github/workflows/check-for-updated-dependencies.yaml | 2 +- packages/honeypot/CHANGELOG.md | 4 ++++ packages/honeypot/Dockerfile | 4 ++-- packages/honeypot/version.json | 2 +- 4 files changed, 8 insertions(+), 4 deletions(-) diff --git a/.github/workflows/check-for-updated-dependencies.yaml b/.github/workflows/check-for-updated-dependencies.yaml index ab76ffd..4914111 100644 --- a/.github/workflows/check-for-updated-dependencies.yaml +++ b/.github/workflows/check-for-updated-dependencies.yaml @@ -12,7 +12,7 @@ jobs: steps: - name: Check overview page run: | - curl https://edu.chainguard.dev/chainguard/chainguard-images/reference/python/overview/ | grep sha256:36d9faf5198aec34124b2d8434b23dbe518f72ecc62d51b2b8e29fbd62f44110 + curl https://edu.chainguard.dev/chainguard/chainguard-images/reference/python/overview/ | grep sha256:c8cbd40534c4db9d7167aec76982a248d2a3c21d42dcb4af411da552708067b3 # If this fails, that likely means the "latest" and "latest-dev" tags for Python are pointing at new images with new digests # Follow the process to update the Dockerfiles accordingly, then update the hardcoded digest here to be one of the new digests (doesn't matter which one) to detect future changes diff --git a/packages/honeypot/CHANGELOG.md b/packages/honeypot/CHANGELOG.md index 8aa5b32..ee0197b 100644 --- a/packages/honeypot/CHANGELOG.md +++ b/packages/honeypot/CHANGELOG.md @@ -13,6 +13,10 @@ What is in scope for breaking changes includes ## Changes +### v0.4.8 + +- Update Chainguard base images in the Dockerfile + ### v0.4.7 - Update Chainguard base images in the Dockerfile, including an update to Python 3.11.5 from 3.11.4 diff --git a/packages/honeypot/Dockerfile b/packages/honeypot/Dockerfile index bfe29e7..21233c5 100644 --- a/packages/honeypot/Dockerfile +++ b/packages/honeypot/Dockerfile @@ -1,7 +1,7 @@ # Adapted from https://edu.chainguard.dev/chainguard/chainguard-images/reference/python/overview/#usage # Python 3.11.5, dev base image. See https://www.chainguard.dev/unchained/a-guide-on-how-to-use-chainguard-images-for-public-catalog-tier-users for more details on how to update this -FROM cgr.dev/chainguard/python@sha256:2dccbdb82841992fe1ff8413c533036aae3aa6539462ba288c64b66ec3199e27 as builder +FROM cgr.dev/chainguard/python@sha256:e51a0b8de16b38ab18c2571ff8b0d27e6d5ad6285ec80c532dcc9feaa0444ff8 as builder WORKDIR /app @@ -10,7 +10,7 @@ COPY requirements.txt . RUN pip install -r requirements.txt --user # Python 3.11.5, production base image. See https://www.chainguard.dev/unchained/a-guide-on-how-to-use-chainguard-images-for-public-catalog-tier-users for more details on how to update this -FROM cgr.dev/chainguard/python@sha256:36d9faf5198aec34124b2d8434b23dbe518f72ecc62d51b2b8e29fbd62f44110 +FROM cgr.dev/chainguard/python@sha256:c8cbd40534c4db9d7167aec76982a248d2a3c21d42dcb4af411da552708067b3 # Make sure you update Python version in path COPY --from=builder /home/nonroot/.local/lib/python3.11/site-packages /home/nonroot/.local/lib/python3.11/site-packages diff --git a/packages/honeypot/version.json b/packages/honeypot/version.json index 08f5350..6b117d2 100644 --- a/packages/honeypot/version.json +++ b/packages/honeypot/version.json @@ -1,3 +1,3 @@ { - "version": "0.4.7" + "version": "0.4.8" } \ No newline at end of file