svrnty/docker-base-distro
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 13 Wiki Activity
12 Commits 1 Branch 13 Tags 192 KiB
dcedc113e8
Commit Graph

11 Commits

Author SHA1 Message Date
Mathias Beaulieu-Duncan
dcedc113e8 Fix provenance JSON: use jq instead of heredoc to avoid whitespace
Some checks failed
Check for Upstream Stable Updates / Rebuild and push all variants (apko/flutter-sdk.yaml, flutter-sdk) (push) Blocked by required conditions
Details
Check for Upstream Stable Updates / Create release for new Flutter version (push) Blocked by required conditions
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/base.yaml, base) (push) Failing after 24s
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/build.yaml, build) (push) Failing after 24s
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Failing after 27s
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Failing after 28s
Details
Check for Upstream Stable Updates / Check Wolfi package updates (push) Successful in 14s
Details
Check for Upstream Stable Updates / Check .NET stable releases (push) Successful in 1s
Details
Check for Upstream Stable Updates / Check Flutter stable releases (push) Successful in 1s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/base.yaml, base) (push) Failing after 17s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/build.yaml, build) (push) Failing after 21s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Failing after 20s
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/flutter-sdk.yaml, flutter-sdk) (push) Has been cancelled
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Has been cancelled
Details 
The heredoc with YAML indentation produced JSON with leading spaces,
causing cosign to fail with "required field builder missing". Use
jq -n with --arg to generate clean JSON.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 10:17:16 -05:00
Mathias Beaulieu-Duncan
2e07c31e99 Add SBOM and provenance attestations via cosign
Some checks failed
Weekly Rebuild (CVE Updates) / rebuild (apko/build.yaml, build) (push) Failing after 28s
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/base.yaml, base) (push) Failing after 30s
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Failing after 26s
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Failing after 26s
Details
Check for Upstream Stable Updates / Check Wolfi package updates (push) Successful in 16s
Details
Check for Upstream Stable Updates / Check .NET stable releases (push) Successful in 2s
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/flutter-sdk.yaml, flutter-sdk) (push) Failing after 27s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/base.yaml, base) (push) Failing after 22s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/build.yaml, build) (push) Failing after 22s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Failing after 22s
Details
Check for Upstream Stable Updates / Check Flutter stable releases (push) Successful in 2s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Failing after 24s
Details
Check for Upstream Stable Updates / Create release for new Flutter version (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/flutter-sdk.yaml, flutter-sdk) (push) Failing after 20s
Details 
Use cosign to attach SPDX SBOM (generated by apko) and SLSA
provenance attestations to all published images. Applied to
publish, rebuild, and update-check pipelines.

Also added push trigger on self-path for rebuild.yaml.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 10:12:47 -05:00
Mathias Beaulieu-Duncan
0711e3142a Fix apko install in rebuild job of update-check pipeline
All checks were successful
Check for Upstream Stable Updates / Check .NET stable releases (push) Successful in 2s
Details
Check for Upstream Stable Updates / Check Flutter stable releases (push) Successful in 2s
Details
Check for Upstream Stable Updates / Create release for new Flutter version (push) Has been skipped
Details
Check for Upstream Stable Updates / Check Wolfi package updates (push) Successful in 15s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/base.yaml, base) (push) Successful in 25s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/build.yaml, build) (push) Successful in 35s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Successful in 36s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Successful in 38s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/flutter-sdk.yaml, flutter-sdk) (push) Successful in 31s
Details 
The second Install apko step (in the rebuild job) was missed in the
previous fixes.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 10:03:35 -05:00
Mathias Beaulieu-Duncan
d6cac3cc8b Fix apko tar extraction: binary is in a subdirectory
Some checks failed
Check for Upstream Stable Updates / Check .NET stable releases (push) Successful in 2s
Details
Check for Upstream Stable Updates / Check Flutter stable releases (push) Successful in 2s
Details
Check for Upstream Stable Updates / Create release for new Flutter version (push) Has been skipped
Details
Check for Upstream Stable Updates / Check Wolfi package updates (push) Successful in 15s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/base.yaml, base) (push) Failing after 3s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/build.yaml, build) (push) Failing after 3s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Failing after 3s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Failing after 3s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/flutter-sdk.yaml, flutter-sdk) (push) Failing after 3s
Details 
The tarball contains apko_1.1.2_linux_amd64/apko, not a flat apko
binary. Use --strip-components=1 to extract correctly.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 10:02:18 -05:00
Mathias Beaulieu-Duncan
b2bf4e309a Fix apko asset filename: include version number
Some checks failed
Check for Upstream Stable Updates / Check .NET stable releases (push) Successful in 1s
Details
Check for Upstream Stable Updates / Check Wolfi package updates (push) Failing after 3s
Details
Check for Upstream Stable Updates / Check Flutter stable releases (push) Successful in 2s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/base.yaml, base) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/build.yaml, build) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/flutter-sdk.yaml, flutter-sdk) (push) Has been skipped
Details
Check for Upstream Stable Updates / Create release for new Flutter version (push) Has been skipped
Details 
Asset naming is apko_1.1.2_linux_amd64.tar.gz, not
apko_linux_amd64.tar.gz. Strip the v prefix from the tag
to build the correct filename.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 10:01:06 -05:00
Mathias Beaulieu-Duncan
855564ecfd Add debug output to apko install step
Some checks failed
Check for Upstream Stable Updates / Check .NET stable releases (push) Successful in 1s
Details
Check for Upstream Stable Updates / Check Wolfi package updates (push) Failing after 3s
Details
Check for Upstream Stable Updates / Check Flutter stable releases (push) Successful in 1s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/base.yaml, base) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/build.yaml, build) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/flutter-sdk.yaml, flutter-sdk) (push) Has been skipped
Details
Check for Upstream Stable Updates / Create release for new Flutter version (push) Has been skipped
Details 
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 09:59:59 -05:00
Mathias Beaulieu-Duncan
3bd65d9e05 Fix apko install: resolve version via GitHub API instead of /latest redirect
Some checks failed
Check for Upstream Stable Updates / Check .NET stable releases (push) Successful in 1s
Details
Check for Upstream Stable Updates / Check Wolfi package updates (push) Failing after 2s
Details
Check for Upstream Stable Updates / Check Flutter stable releases (push) Successful in 1s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/base.yaml, base) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/build.yaml, build) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/flutter-sdk.yaml, flutter-sdk) (push) Has been skipped
Details
Check for Upstream Stable Updates / Create release for new Flutter version (push) Has been skipped
Details 
The Gitea runner doesn't follow GitHub's /latest/download/ 302
redirect properly. Resolve the version tag explicitly via the
GitHub API, then download from the versioned URL directly.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 09:58:52 -05:00
Mathias Beaulieu-Duncan
c6d009dbfa Trigger update-check on push to its own file
Some checks failed
Check for Upstream Stable Updates / Check .NET stable releases (push) Successful in 1s
Details
Check for Upstream Stable Updates / Check Wolfi package updates (push) Failing after 3s
Details
Check for Upstream Stable Updates / Check Flutter stable releases (push) Successful in 1s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/base.yaml, base) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/build.yaml, build) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/flutter-sdk.yaml, flutter-sdk) (push) Has been skipped
Details
Check for Upstream Stable Updates / Create release for new Flutter version (push) Successful in 1s
Details 
Replace workflow_dispatch (not supported in our Gitea version) with
push trigger scoped to the workflow file path. Pushing any change
to update-check.yaml will trigger a run.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 09:57:26 -05:00
Mathias Beaulieu-Duncan
5f94a3caac Use unauthenticated HTTP status check for release existence 
Align with docker-flutter-sdk pattern: check release existence via
HTTP status code (no auth needed), reserve GITEA_TOKEN for release
creation only.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 09:50:32 -05:00
Mathias Beaulieu-Duncan
ee428c1331 Fix apko install URL and Flutter release check in CI pipelines 
- apko release assets use lowercase OS and Go arch naming
  (linux_amd64), but uname returns Linux and x86_64. Map with
  tr/sed before building the download URL.
- Flutter release check used curl -fsSL which fails on 404 when
  the release doesn't exist yet. Switch to -sS so the step
  continues and correctly detects new versions.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 09:48:31 -05:00
Mathias Beaulieu-Duncan
60d6d3bbec Rename flutter to flutter-sdk, add curl to runtime, add update-check pipeline
Some checks failed
Weekly Rebuild (CVE Updates) / rebuild (apko/base.yaml, base) (push) Failing after 2s
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/build.yaml, build) (push) Failing after 3s
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Failing after 2s
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Failing after 4s
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/flutter-sdk.yaml, flutter-sdk) (push) Failing after 2s
Details
Check for Upstream Stable Updates / Check .NET stable releases (push) Successful in 1s
Details
Check for Upstream Stable Updates / Check Wolfi package updates (push) Failing after 3s
Details
Check for Upstream Stable Updates / Check Flutter stable releases (push) Failing after 1s
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/base.yaml, base) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/build.yaml, build) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Has been skipped
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/flutter-sdk.yaml, flutter-sdk) (push) Has been skipped
Details
Check for Upstream Stable Updates / Create release for new Flutter version (push) Has been skipped
Details 
- Rename flutter variant to flutter-sdk for clarity across all configs
  and pipelines
- Add curl to dotnet-runtime apko config (needed to bootstrap .NET
  runtime installation in downstream Dockerfiles)
- Add daily update-check pipeline that monitors Flutter stable channel
  and Wolfi package updates, auto-creates releases for new Flutter
  versions and rebuilds all variants with latest packages

Tested all variants with real workloads:
- dotnet-sdk: dotnet new console + build + run
- dotnet-runtime: multi-stage build, run prebuilt app
- flutter-sdk: flutter create + build web --release

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-02-02 02:54:44 -05:00