Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Re-pin Docker base image in Dockerfile #90

Merged
merged 1 commit into from
Oct 5, 2022
Merged

Re-pin Docker base image in Dockerfile #90

merged 1 commit into from
Oct 5, 2022

Conversation

atomist[bot]
Copy link
Contributor

@atomist atomist bot commented Oct 5, 2022
edited

This pull request re-pins the Docker base image busybox:1.35.0 in Dockerfile to the current digest.

volumes-backup-extension/Dockerfile

Line 48 in 9ba92c8

FROM busybox:1.35.0@sha256:d7f4aada301c0f13d93ceed62fef318c195c38bf430fc8bfbdf1d850514422ff

Digest sha256:d7f4aada301c0f13d93ceed62fef318c195c38bf430fc8bfbdf1d850514422ff references a multi-CPU architecture image manifest. This image supports the following architectures:

Changelog for busybox:1.35.0

Commit

New image build caused by commit docker-library/official-images@94a73bc to library/busybox:

Update busybox

Changes:

- https://github.com/docker-library/busybox/commit/b8bb85f: Merge pull request https://github.com/docker-library/busybox/pull/146 from infosiftr/buildroot-2022.08.1
- https://github.com/docker-library/busybox/commit/b7a7954: Update buildroot to 2022.08.1

Comparison

Comparing Docker image busybox:1.35.0 at digests

Current sha256:80548a8d85fa32ce25b126657e29e6caf92ce8aa6b4a0bb5708c58a8d6a751f3 and
Proposed sha256:d7f4aada301c0f13d93ceed62fef318c195c38bf430fc8bfbdf1d850514422ff :

Packages

No package differences detected

Files

No file modifications detected

History

The following differences in docker history were detected:

-/bin/sh -c #(nop) ADD file:eb6acc9b156cd0a00e3bd36aa2a6a5804c67949324d220c6ad53ac98af9be836 in /
+/bin/sh -c #(nop) ADD file:83c5003206e1b283bbf673e0e1806cc7010d6ea90659bbd75b55d51395f191c0 in /
 /bin/sh -c #(nop)  CMD ["sh"]

Ports

No different exposed ports detected

Environment Variables

No different environment variables detected

Pinning FROM lines to digests makes your builds repeatable. Atomist will raise new pull requests whenever the tag moves, so that you know when the base image has been updated. You can follow a new tag at any time. Just replace the digest with the new tag you want to follow. Atomist, will switch to following this new tag.

File changed:

@atomist-bot
Re-pin Docker image busybox:1.35.0
9ba92c8 
busybox:1.35.0@sha256:80548a8d85fa32ce25b126657e29e6caf92ce8aa6b4a0bb5708c58a8d6a751f3
->
busybox:1.35.0@sha256:d7f4aada301c0f13d93ceed62fef318c195c38bf430fc8bfbdf1d850514422ff

 [atomist:generated]
 [atomist-skill:atomist/docker-base-image-policy]

Signed-off-by: Atomist Bot <bot@atomist.com>
@atomist
Copy link
Contributor Author

atomist bot commented Oct 5, 2022
edited

Dockerfile

docker/volumes-backup-extension:pr-90

Vulnerabilities
Comparison

👏 No new critical or high vulnerabilities compared with target branch main

Dockerfile

docker/volumes-backup-extension:pr-90

Vulnerabilities
Comparison

👏 No new critical or high vulnerabilities compared with target branch main

More details are available in the vulnerability report

@github-actions
Copy link

github-actions bot commented Oct 5, 2022

Docker image tag(s) pushed:

docker/volumes-backup-extension:pr-90

Labels added to images:

org.opencontainers.image.title=volumes-backup-extension
org.opencontainers.image.description=Back up, clone, restore, and share Docker volumes effortlessly.
org.opencontainers.image.url=https://github.com/docker/volumes-backup-extension
org.opencontainers.image.source=https://github.com/docker/volumes-backup-extension
org.opencontainers.image.version=pr-90
org.opencontainers.image.created=2022-10-05T09:03:53.807Z
org.opencontainers.image.revision=b3f058167ad15b031e89429b2b3be41bbc1c0436
org.opencontainers.image.licenses=Apache-2.0

@felipecruz91 felipecruz91 merged commit 915c575 into main Oct 5, 2022
@felipecruz91 felipecruz91 deleted the atomist/pin-docker-base-image/dockerfile branch October 5, 2022 11:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@felipecruz91 felipecruz91 felipecruz91 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@felipecruz91 @atomist-bot