Open grubyhs opened 6 days ago
Adding to this: I've been debugging why I keep getting 401s from https://pkgs.dev.azure.com/ when running update_script. I cannot figure out what is going on. I get a successful curl with base64 encoded org:<PAT>
token with basic auth, but when I add the same token to my DEPENDABOT_EXTRA_CREDENTIALS it throws auth errors. Looking at the update script, it seems like this should be using the same auth as my curl (see curl below). Is there any way to log the auth header to see what value the request is getting?
curl:
curl -L -H "Authorization: Basic
docker command (I've tried 1.24, 1.27 and 1.29):
docker run --rm -i \
-e DEPENDABOT_PACKAGE_MANAGER=npm \
-e DEPENDABOT_OPEN_PULL_REQUESTS_LIMIT=1 \
-e DEPENDABOT_DIRECTORY=/ \
-e DEPENDABOT_TARGET_BRANCH=main \
-e DEPENDABOT_EXTRA_CREDENTIALS='[{"type":"npm_registry","token":"
Describe the bug Can't connect to ACR
Categorization
/home/dependabot/dependabot-updater/vendor/ruby/3.3.0/gems/dependabot-docker-0.262.0/lib/dependabot/docker/update_checker.rb:208:in `rescue in tags_from_registry': The following source could not be reached as it requires authentication (and any provided details were invalid or lacked the required permissions): iversparkcontainers.azurecr.io (Dependabot::PrivateSourceAuthenticationFailure)
Well I can't connect to ACR using this config:
# Basic
dependabot.yml` file withminimum configuration for two package managers
registries: dockerhub: # Define access for a private registry type: docker-registry url: iversparkcontainers.azurecr.io username: ${{acr.pullpush.username}} password: ${{acr.pullpush.password}} version: 2 updates:
Enable version updates for Docker
Look for a
Dockerfile
in theroot
directorydirectory: "/docker/azure-agent" registries: "*"
Check for updates once a week
schedule: interval: "daily"
Look for a
Dockerfile
in theroot
directorydirectory: "/docker/base" registries: "*"
Check for updates once a week
schedule: interval: "daily"
package-ecosystem: "docker"
Look for a
Dockerfile
in theroot
directorydirectory: "/docker/services" registries: "*"
Check for updates once a week
schedule: interval: "daily"`
Maybe I am doing something wrong? If I am it should be added to readme in my opinion