Closed auriaave closed 2 months ago
Since a unique repository is used to managed multiple different images, using the identifier (sha1) of a commit will force the update of every image every time one (or more) images need a tag bump.
That is why the first solution (used before renovate) was actually using the tree hash of the image's directory(sha256).
Renovate doesn't know how to sort SHA as stated in this github discussion https://github.com/renovatebot/renovate/discussions/23459
More informations on the way renovate reads SHA tags were found here : https://github.com/renovatebot/renovate/discussions/25849
Multiple approach have been tested so far :
Using latest tag in order to bypass the need for renovate to sort any SHA tag.
Unfortunately, and contrary to what discussion 23459 states, Renovate doesn't seem to be able to read latest tags (tested locally, message was the same as the SHAs error message but with latest).
Setup a proper semver mechanic would take a long time and add more maintenance to ensure the proper bumping of versions.
Fetching the last commit per directory using git log, and extract its timestamp could be the right way to go :
Had issue with auto-update of runtime and builder images in cilium/cilium, finally managed to fix those by changing the already existing workflows to update those in this PR : https://github.com/cilium/cilium/pull/34372
I think this issue can be closed? Thank you for the fix!
Renovate is unable to track image updates. The startup-script image uses sha256 digests that seem unsupported. Versioning needs to be amended for renovate to take care of automatic updates.
Details
Mar 26th: Image update scripts were replaced by renovate
renovate.json5
)Mar 26th: Alpine image needed manual update
June 26th: Alpine image needed manual update
nodeinit image also needed manual update in
cilium/cilium
repoWhen running
LOG_LEVEL=debug renovate --platform=local
on a local copy of the repository,Note: the repetition of debug messages is because multiple Dockerfiles contain the same images (e.g. images bpftool, compilers and llvm).
According to the docker versioning documentation for renovate,
References