ZeroDownTime/CloudBender
3
0
Fork 0
Code Issues 1 Pull Requests 1 Packages Projects Releases Wiki Activity

Compare commits

base: ZeroDownTime:9d8e0ea01f2283affca62820927e91107ca0dfdc
Branches Tags
ZeroDownTime:main
ZeroDownTime:renovate/all-minor-patch
ZeroDownTime:v0.22.0
ZeroDownTime:v0.21.1
ZeroDownTime:v0.21.0
ZeroDownTime:v0.20.1
ZeroDownTime:v0.19.4
ZeroDownTime:v0.19.3
ZeroDownTime:v0.19.2
ZeroDownTime:v0.19.1
ZeroDownTime:v0.19.0
ZeroDownTime:v0.18.1
ZeroDownTime:v0.18.0
ZeroDownTime:v0.17.0
ZeroDownTime:v0.16.3
ZeroDownTime:v0.16.2
ZeroDownTime:v0.16.1
ZeroDownTime:v0.16.0
ZeroDownTime:v0.15.6
ZeroDownTime:v0.15.5
ZeroDownTime:v0.15.4
ZeroDownTime:v0.15.3
ZeroDownTime:v0.15.2
ZeroDownTime:v0.15.1
ZeroDownTime:v0.15.0
ZeroDownTime:v0.14.1
ZeroDownTime:v0.14.0
ZeroDownTime:v0.13.6
ZeroDownTime:v0.13.5
ZeroDownTime:v0.13.4
ZeroDownTime:v0.13.3
ZeroDownTime:v0.13.2
ZeroDownTime:v0.13.1
ZeroDownTime:v0.12.0
ZeroDownTime:v0.11.3
ZeroDownTime:v0.11.2
ZeroDownTime:v0.11.1
ZeroDownTime:v0.11.0
ZeroDownTime:v0.10.5
ZeroDownTime:v0.10.4
ZeroDownTime:v0.10.3
..
compare: ZeroDownTime:aacd2b1f07ba7a2a8a901c11d17d59c821c9a405
Branches Tags
ZeroDownTime:renovate/all-minor-patch
ZeroDownTime:main
ZeroDownTime:v0.22.0
ZeroDownTime:v0.21.1
ZeroDownTime:v0.21.0
ZeroDownTime:v0.20.1
ZeroDownTime:v0.19.4
ZeroDownTime:v0.19.3
ZeroDownTime:v0.19.2
ZeroDownTime:v0.19.1
ZeroDownTime:v0.19.0
ZeroDownTime:v0.18.1
ZeroDownTime:v0.18.0
ZeroDownTime:v0.17.0
ZeroDownTime:v0.16.3
ZeroDownTime:v0.16.2
ZeroDownTime:v0.16.1
ZeroDownTime:v0.16.0
ZeroDownTime:v0.15.6
ZeroDownTime:v0.15.5
ZeroDownTime:v0.15.4
ZeroDownTime:v0.15.3
ZeroDownTime:v0.15.2
ZeroDownTime:v0.15.1
ZeroDownTime:v0.15.0
ZeroDownTime:v0.14.1
ZeroDownTime:v0.14.0
ZeroDownTime:v0.13.6
ZeroDownTime:v0.13.5
ZeroDownTime:v0.13.4
ZeroDownTime:v0.13.3
ZeroDownTime:v0.13.2
ZeroDownTime:v0.13.1
ZeroDownTime:v0.12.0
ZeroDownTime:v0.11.3
ZeroDownTime:v0.11.2
ZeroDownTime:v0.11.1
ZeroDownTime:v0.11.0
ZeroDownTime:v0.10.5
ZeroDownTime:v0.10.4
ZeroDownTime:v0.10.3

No commits in common. "9d8e0ea01f2283affca62820927e91107ca0dfdc" and "aacd2b1f07ba7a2a8a901c11d17d59c821c9a405" have entirely different histories.
9d8e0ea01f ... aacd2b1f07

4 changed files with 7 additions and 5 deletions
Show Stats Expand all files Collapse all files

3
.ci/ecr_public_lifecycle.py
View File

@ -41,8 +41,7 @@ for image in sorted(images, key=lambda d: d['imagePushedAt'], reverse=True):
_delete = True _delete = True
for tag in image["imageTags"]: for tag in image["imageTags"]:
# Look for at least one tag NOT beign a SemVer dev tag # Look for at least one tag NOT beign a SemVer dev tag
# untagged dev builds get tagged as <tag>-g<commit> if "-" not in tag:
if "-g" not in tag and "dirty" not in tag:
_delete = False _delete = False
if _delete: if _delete:
print("Deleting development image {}".format(image["imageTags"])) print("Deleting development image {}".format(image["imageTags"]))

6
.ci/podman.mk
View File

@ -8,8 +8,8 @@ SHELL := bash
.PHONY: all # All targets are accessible for user .PHONY: all # All targets are accessible for user
.DEFAULT: help # Running Make will run the help target .DEFAULT: help # Running Make will run the help target
# Parse version from latest git semver tag, use short commit otherwise # Parse version from latest git semver tag
GIT_TAG ?= $(shell git describe --tags --match v*.*.* --dirty 2>/dev/null || git describe --match="" --always --dirty 2>/dev/null) GIT_TAG ?= $(shell git describe --tags --match v*.*.* 2>/dev/null || git rev-parse --short HEAD 2>/dev/null)
GIT_BRANCH ?= $(shell git rev-parse --abbrev-ref HEAD 2>/dev/null) GIT_BRANCH ?= $(shell git rev-parse --abbrev-ref HEAD 2>/dev/null)
TAG ::= $(GIT_TAG) TAG ::= $(GIT_TAG)
@ -49,7 +49,7 @@ test:: ## test built artificats
scan: ## Scan image using trivy scan: ## Scan image using trivy
echo "Scanning $(IMAGE):$(TAG)-$(_ARCH) using Trivy $(TRIVY_REMOTE)" echo "Scanning $(IMAGE):$(TAG)-$(_ARCH) using Trivy $(TRIVY_REMOTE)"
trivy image $(TRIVY_OPTS) --quiet --no-progress localhost/$(IMAGE):$(TAG)-$(_ARCH) trivy image $(TRIVY_OPTS) --quiet --no-progress --ignorefile ./.trivyignore.yaml localhost/$(IMAGE):$(TAG)-$(_ARCH)
# first tag and push all actual images # first tag and push all actual images
# create new manifest for each tag and add all available TAG-ARCH before pushing # create new manifest for each tag and add all available TAG-ARCH before pushing

0
.trivyignore → .trivyignore.yaml
View File

3
Dockerfile
View File

@ -33,6 +33,9 @@ RUN curl -fsSL https://get.pulumi.com/ | sh -s -- --version $(pip show pulumi --
# minimal pulumi # minimal pulumi
RUN cd /root/.pulumi/bin && rm -f *dotnet *yaml *go *java && strip pulumi* || true RUN cd /root/.pulumi/bin && rm -f *dotnet *yaml *go *java && strip pulumi* || true
# Remove AWS keys from docstring to prevent trivy alerts later
RUN sed -i -e 's/AKIA.*//' /venv/lib/python${RUNTIME_VERSION}/site-packages/pulumi_aws/lightsail/bucket_access_key.py
# Now build the final runtime, incl. running rootless containers # Now build the final runtime, incl. running rootless containers
FROM python:${RUNTIME_VERSION}-alpine${DISTRO_VERSION} FROM python:${RUNTIME_VERSION}-alpine${DISTRO_VERSION}