opendesigndev / open-design-engine

The Open Design Engine (ODE) renders designs and provides interface to edit them and query specific information about them and their components
Apache License 2.0
4 stars 5 forks source link

Bump debian base image and switch to Amazon ECR Public #15

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps debian from 9b42b2e to 8eaee63.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
rychlis commented 1 year ago

ok i configured dependabot to check dockerfiles and thought it would create alerts based on security updates, but it seems like it just checks if there is a new image in the registry which is probably useless

rychlis commented 1 year ago

i wonder if it will create new PRs every time new debian is created or just update current pr :D

rychlis commented 1 year ago

Nice, so it force pushes when a new update happens and doesnt do a new PR. Better then I expected :D

rychlis commented 1 year ago

However it didnt update the title and description. Right now the PR is updating docker image to 77f46c1cf862290e750e913defffb2828c889d291a93bdd10a7a0597720948fc :/

rychlis commented 1 year ago

I switched to public.ecr.aws as the default dockerhub repositories can often start rate limiting non-authenticated requests. public.ecr.aws is just a mirror of what is on docker hub