Updated Dockerfile to resolve build issues due to vintage #131
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Merge refactor --------- Co-authored-by: Richard Worwood <richard.worwood@endava.com>
* Update supported_versions.json to latest * Update supported_versions.json * Update supported_versions.json * Update supported_versions.json * Update Dockerfile * Update Dockerfile * Update Dockerfile * Update Dockerfile * Update Dockerfile * Update Dockerfile * Update Dockerfile * Update Dockerfil formatting and safety * Push update to Dockerfile * specify devian version * add gosu * remove gosu * switch to curl * specify azure-cli version * simplify structure * update versions * change setuptools version * switch to 58 * uses DOCKERHUB_USERNAME secret as * correct push name --------- Co-authored-by: Richard Worwood <richard.worwood@endava.com>
* Update to push using secrets * Update Dockerfile "Remove line" --------- Co-authored-by: Richard Worwood <richard.worwood@endava.com>
Bumps [plexsystems/container-structure-test-action](https://github.com/plexsystems/container-structure-test-action) from 0.2.0 to 0.3.0. - [Release notes](https://github.com/plexsystems/container-structure-test-action/releases) - [Commits](plexsystems/container-structure-test-action@v0.2.0...v0.3.0) --- updated-dependencies: - dependency-name: plexsystems/container-structure-test-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2 to 3. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@v2...v3) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2 to 3. - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@v2...v3) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…#9) * Create supported-versions.yml * Create test-harness for testing supported versions workflow * Update build-test.yml * Update supported-versions.yml * Update test-harness.yml * Update test-harness.yml * commit test for supported-versions workflow * test for matrix content * add latest version workflow * move from includes/ directory and rename to includes_ * update to use include_latest-version.yml --------- Co-authored-by: Richard Worwood <richard.worwood@endava.com>
…s using artifact repository (#11) * Simplified build-test.yml to remove need to upload and download images to artifact repository
|
Hello @Jubblin 👋 Thanks a lot for the incredible work injected into this PR 🤩 As a matter of fact, I'm looking for maintainers for this project (and also for the AWS sibling) ! |
bgauduch
requested changes
Aug 23, 2023
Comment on lines
+10
to
+17
| RUN apt-get update && \ | ||
| apt-get install --no-install-recommends -y \ | ||
| curl=7.74.0-1.3+deb11u7 \ | ||
| ca-certificates=20210119 \ | ||
| unzip=6.0-26+deb11u1 \ | ||
| gnupg=2.2.27-2+deb11u2 && \ | ||
| apt-get clean && \ | ||
| rm -rf /var/lib/apt/lists/* |
There was a problem hiding this comment.
As this Dockerfile follow the multi-stages build pattern :
- Optimizing throw-away stages is not required, as additional image layers won't end up in the final runtime stage
- Keeping each instruction in a separated layer allow a more efficient use of build caching
So I would suggest to revert this changes 😉
Comment on lines
+19
to
+27
| RUN curl -Os https://releases.hashicorp.com/terraform/${TERRAFORM_VERSION}/terraform_${TERRAFORM_VERSION}_SHA256SUMS && \ | ||
| curl -Os https://releases.hashicorp.com/terraform/${TERRAFORM_VERSION}/terraform_${TERRAFORM_VERSION}_linux_amd64.zip && \ | ||
| curl -Os https://releases.hashicorp.com/terraform/${TERRAFORM_VERSION}/terraform_${TERRAFORM_VERSION}_SHA256SUMS.sig | ||
| COPY hashicorp.asc hashicorp.asc | ||
| RUN gpg --import hashicorp.asc | ||
| RUN gpg --verify terraform_${TERRAFORM_VERSION}_SHA256SUMS.sig terraform_${TERRAFORM_VERSION}_SHA256SUMS | ||
| RUN gpg --import hashicorp.asc && \ | ||
| gpg --verify terraform_${TERRAFORM_VERSION}_SHA256SUMS.sig terraform_${TERRAFORM_VERSION}_SHA256SUMS | ||
| SHELL ["/bin/bash", "-o", "pipefail", "-c"] | ||
| RUN grep terraform_${TERRAFORM_VERSION}_linux_amd64.zip terraform_${TERRAFORM_VERSION}_SHA256SUMS | sha256sum -c - | ||
| RUN unzip -j terraform_${TERRAFORM_VERSION}_linux_amd64.zip | ||
| RUN grep terraform_${TERRAFORM_VERSION}_linux_amd64.zip terraform_${TERRAFORM_VERSION}_SHA256SUMS | sha256sum -c - && \ | ||
| unzip -j terraform_${TERRAFORM_VERSION}_linux_amd64.zip |
Comment on lines
+33
to
+40
| RUN apt-get update && \ | ||
| apt-get install -y --no-install-recommends \ | ||
| python3=${PYTHON_MAJOR_VERSION}.2-3 \ | ||
| python3-pip=20.3.4-4+deb11u1 && \ | ||
| apt-get clean && \ | ||
| rm -rf /var/lib/apt/lists/* && \ | ||
| pip3 install --no-cache-dir setuptools==58 && \ | ||
| pip3 install --no-cache-dir azure-cli==${AZURE_CLI_VERSION} |
There was a problem hiding this comment.
Same comment as above here too 🙂
Comment on lines
+1
to
13
| [](https://github.com/worwoods/terraform-azure-cli/actions/workflows/lint-dockerfile.yml) | ||
| [](https://github.com/worwoods/terraform-azure-cli/actions/workflows/build-test.yml) | ||
| [](https://github.com/worwoods/terraform-azure-cli/actions/workflows/push-latest.yml) | ||
| [](https://github.com/worwoods/terraform-azure-cli/actions/workflows/release.yml) | ||
|
|
||
| [](https://github.com/zenika-open-source/terraform-azure-cli/actions/workflows/dockerhub-description.yml) | ||
| [](https://github.com/worwoods/terraform-azure-cli/actions/workflows/dockerhub-description.yml) | ||
| [](https://opensource.org/licenses/Apache-2.0) | ||
| [](https://hub.docker.com/r/zenika/terraform-azure-cli/) | ||
| [](https://hub.docker.com/r/worwoods/terraform-azure-cli/) | ||
|
|
||
| <p align="center"> | ||
| <a href="https://azure.microsoft.com"><img width="200" src="https://github.com/Zenika/terraform-azure-cli/raw/master/resources/azure-logo.png"></a> | ||
| <a href="https://www.terraform.io/"><img width="200" src="https://github.com/Zenika/terraform-azure-cli/raw/master/resources/terraform-logo.png"></a> | ||
| <a href="https://azure.microsoft.com"><img width="200" src="https://github.com/worwoods/terraform-azure-cli/raw/master/resources/azure-logo.png"></a> | ||
| <a href="https://www.terraform.io/"><img width="200" src="https://github.com/worwoods/terraform-azure-cli/raw/master/resources/terraform-logo.png"></a> | ||
| </p> |
There was a problem hiding this comment.
I believe you changes this to test the badges and images, but we want to keep upstream references on https://github.com/zenika-open-source/terraform-azure-cli here 😉
| Available image tags can be found on the Docker Hub registry: [zenika/terraform-azure-cli](https://hub.docker.com/r/zenika/terraform-azure-cli/tags) | ||
| Available image tags can be found on the Docker Hub registry: [worwoods/terraform-azure-cli](https://hub.docker.com/r/worwoods/terraform-azure-cli/tags) |
There was a problem hiding this comment.
Same here, we want to keep the reference on Zenika registry
Comment on lines
-51
to
+34
| run: docker image build . --file Dockerfile --build-arg TERRAFORM_VERSION=${{ matrix.tf_version }} --build-arg AZURE_CLI_VERSION=${{ matrix.azcli_version }} --tag ${ORGANIZATION}/${IMAGE_NAME}:${IMAGE_RELEASE_TAG} | ||
| run: docker image build . --file Dockerfile --build-arg TERRAFORM_VERSION=${{ matrix.tf_version }} --build-arg AZURE_CLI_VERSION=${{ matrix.azcli_version }} --tag ${{ secrets.DOCKERHUB_USERNAME }}/${IMAGE_NAME}:${IMAGE_RELEASE_TAG} |
There was a problem hiding this comment.
Same feedback as in push-latest workflow, we might be better off keeping ORGANIZATION env var
| @@ -0,0 +1,50 @@ | |||
| name: Load Supported Versions | |||
There was a problem hiding this comment.
Maybe I didn't understand correctly, but aren't include_latest-version and include_supported-versions.yml a bit of a duplication ?
The only difference I can sport is sort | reverse VS sort | .[-1] for both TF and AWSCLI versions, I'm not sure to quite understand the use case.
EDIT :
Oh okay the difference is the latest version for each VS a matrix of all versions for each tool.
In that cas, a plural on outputs would be nice 😉
| matrix: | ||
| description: "Matrix of supported versions" | ||
| value: ${{ jobs.load_versions.outputs.matrix }} | ||
| azcli_version: |
There was a problem hiding this comment.
Suggested change
| azcli_version: | |
| azcli_versions: |
Beware of references elsewhere in the code
| azcli_version: | ||
| description: "Matrix of supported azcli versions" | ||
| value: ${{ jobs.load_versions.outputs.azcli_version }} | ||
| tf_version: |
There was a problem hiding this comment.
Suggested change
| tf_version: | |
| tf_versions: |
Beware of references elsewhere in the code
| @@ -0,0 +1,43 @@ | |||
| name: Load Supported Versions | |||
There was a problem hiding this comment.
As you stated in the name, it might be better to keep the file name plural as latest version is exposed for multi tools, what do you think ?
That would be: .github/workflows/include_latest-versions.yml
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Updated Dockerfile to resolve Dockerfile build issues, updated actions to the latest versions, and made workflows more generic so they can be built on more simply by others moving forward.