Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: enables multi-platform support for OCI images #5082

Merged
merged 1 commit into from Mar 4, 2024
Merged

fix: enables multi-platform support for OCI images #5082

merged 1 commit into from Mar 4, 2024

Conversation

pecodez
Copy link
Contributor

@pecodez pecodez commented Feb 29, 2024
edited

What does this PR do?

Enables multi-platform support for OCI images.

How should this be manually tested?

Using Docker engine 25.x test an OCI image with a non-standard platform...

snyk container test busybox:latest --platform=linux/arm64

Any background context you want to provide?

Docker engine 25.x now creates an archive with a compliant OCI layout when running docker save. We previously only supported linux/amd64 for OCI layouts.

snyk/snyk-docker-plugin#571

What are the relevant tickets?

https://snyksec.atlassian.net/browse/SUP-2577
https://snyksec.atlassian.net/browse/SUP-2579
https://snyksec.atlassian.net/browse/SUP-2594
https://snyksec.atlassian.net/browse/SUP-2595
https://snyksec.atlassian.net/browse/SUP-2630

@pecodez pecodez marked this pull request as ready for review February 29, 2024 10:30
@pecodez pecodez requested a review from a team as a code owner February 29, 2024 10:30
@thisislawatts
Copy link
Member

We use the commit messages to generate our release notes. Could you update the message to briefly explain the changes you made in a way that's easy to understand for users who might not be familiar with the code itself?

For example, instead of fix: bumps snyk-docker-plugin to v6.10.3 version you could say fix: adds support for multi-platform for OCI images. I don't have full context here but does this change represent a bug fix/regression or should it instead use feat: because we are introducing new behaviour?

This will help us create even better release notes for everyone!

cmars
cmars approved these changes Mar 4, 2024
View reviewed changes
Copy link
Contributor

@cmars cmars left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM with @thisislawatts comment addressed.

@pecodez pecodez changed the title fix: bumps snyk-docker-plugin to v6.10.3 fix: enables multi-platform support for OCI images Mar 4, 2024
@pecodez
fix: enables multi-platform support for OCI images
ac14262 
This fixes a bug that restricted scanning OCI images to linux/amd64
only. We now also ensure the provided --platform flag is used to
correctly identify the appropriate manifests for images that have
multiple platforms.
@pecodez pecodez merged commit 00af20b into main Mar 4, 2024
14 checks passed
@pecodez pecodez deleted the fix/bumps-sdp-v6.10.3 branch March 4, 2024 19:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@cmars cmars cmars approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
3 participants
@pecodez @thisislawatts @cmars