-
Notifications
You must be signed in to change notification settings - Fork 994
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
terraform: add h1 hashes for multiple os_arch in terraform.lock.hcl file #4042
Comments
I wonder if this could be worked around temporarily with a GitHub Actions workflow which adds to the dependabot PR 🤔 |
Right now, all of dependabot's PRs for Terraform are useless to us because they only include the hashes for |
It would be valuable to have to option to extend the platform providers locking.
Or we simply add all needed platforms in the hcl.lock through the flags Parsing the Quote Terraform docs
|
For the purpose of Terraform locking, we now have defined all supported Terraform platforms in the `terraform providers lock` command. This makes sure that we have all h1 sums in the `.terraform.lock.hcl` so that we keep compatability and do not run in errors on runs at other platforms than Linux. Solves: dependabot#4042
For the purpose of Terraform locking, we now have defined all supported Terraform platforms in the `terraform providers lock` command. This makes sure that we have all h1 sums in the `.terraform.lock.hcl` so that we keep compatability and do not run in errors on runs at other platforms than Linux. resolves: dependabot#4042
For the purpose of Terraform locking, we now have defined all supported Terraform platforms in the `terraform providers lock` command. This makes sure that we have all h1 sums in the `.terraform.lock.hcl` so that we keep compatability and do not run in errors on runs at other platforms than Linux. resolves: dependabot#4042
For the purpose of Terraform locking, we now have defined all supported Terraform platforms in the `terraform providers lock` command. This makes sure that we have all h1 sums in the `.terraform.lock.hcl` so that we keep compatability and do not run in errors on runs at other platforms than Linux. resolves: dependabot#4042
For the purpose of Terraform locking, we now have defined all supported Terraform platforms in the `terraform providers lock` command. This makes sure that we have all h1 sums in the `.terraform.lock.hcl` so that we keep compatability and do not run in errors on runs at other platforms than Linux. resolves: dependabot#4042
… locking For the purpose of Terraform locking, we now have defined nearly all supported Terraform platforms in the `terraform providers lock` command. Except linux_arm64, as not all providers seem to be present yet for that platform. This makes sure that we have all h1 sums in the `.terraform.lock.hcl` so that we keep compatability and do not run in errors on runs at other platforms than Linux. resolves: dependabot#4042
Wasn't this effectively fixed by? |
Problem
Dependabot updates terraform.lock.hcl file with h1 hash for new provider version, but only for default platform it runs on. Example PR: https://github.com/mwieczorek/dependabot-test/pull/1
In above example I run locally command
which produced 4 h1 hashes in file. When depedabot run, it added only one h1 hash (linux_amd64).
If I merge that PR and then clone the repository locally I may run into one of the issues:
terraform init
I'll get an error likeError while importing hashicorp/vault v2.21.0 from the shared cache directory: the provider cache at .terraform/providers has a copy of registry.terraform.io/hashicorp/vault 2.21.0 that doesn't match
terraform init
will update terraform.lock.hcl file with new h1Proposed solution
Add most common os_arch 'platforms' to 'terraform providers lock' command. F.e. linux_amd64, darwin_amd64, windows_amd64
I understand some providers may not have all of those os_arch combinations, so dependabot should gracefully ignore if one of them is not available.
The text was updated successfully, but these errors were encountered: