Commit065263a

authored

chore: update dependabot config and pin Docker images (#15194)

1 parentb529393 commit065263aCopy full SHA for 065263a

File tree

+25

-6

lines changed

+25

-6

lines changed

Lines changed: 10 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -51,7 +51,13 @@ updates:`
`51`	`51`
`52`	`52`	`# Update our Dockerfile.`
`53`	`53`	`-package-ecosystem:"docker"`
`54`		`-directory:"/scripts/"`
	`54`	`+directories:`
	`55`	`+ -"/dogfood/contents"`
	`56`	`+ -"/scripts"`
	`57`	`+ -"/examples/templates/docker/build"`
	`58`	`+ -"/examples/parameters/build"`
	`59`	`+ -"/scaletest/templates/scaletest-runner"`
	`60`	`+ -"/scripts/ironbank"`
`55`	`61`	`schedule:`
`56`	`62`	`interval:"weekly"`
`57`	`63`	`time:"06:00"`
`@@ -68,6 +74,9 @@ updates:`
`68`	`74`	`directories:`
`69`	`75`	`-"/site"`
`70`	`76`	`-"/offlinedocs"`
	`77`	`+ -"/scripts"`
	`78`	`+ -"/scripts/apidocgen"`
	`79`	`+`
`71`	`80`	`schedule:`
`72`	`81`	`interval:"monthly"`
`73`	`82`	`time:"06:00"`

Lines changed: 10 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -216,6 +216,11 @@ jobs:`
`216`	`216`	`DOCKER_CLI_EXPERIMENTAL:"enabled"`
`217`	`217`	`CODER_IMAGE_TAG:${{ needs.get_info.outputs.CODER_IMAGE_TAG }}`
`218`	`218`	`steps:`
	`219`	`+ -name:Harden Runner`
	`220`	`+uses:step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7# v2.10.1`
	`221`	`+with:`
	`222`	`+egress-policy:audit`
	`223`	`+`
`219`	`224`	`-name:Checkout`
`220`	`225`	`uses:actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871# v4.2.1`
`221`	`226`	`with:`
`@@ -267,6 +272,11 @@ jobs:`
`267`	`272`	`PR_URL:${{ needs.get_info.outputs.PR_URL }}`
`268`	`273`	`PR_HOSTNAME:"pr${{ needs.get_info.outputs.PR_NUMBER }}.${{ secrets.PR_DEPLOYMENTS_DOMAIN }}"`
`269`	`274`	`steps:`
	`275`	`+ -name:Harden Runner`
	`276`	`+uses:step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7# v2.10.1`
	`277`	`+with:`
	`278`	`+egress-policy:audit`
	`279`	`+`
`270`	`280`	`-name:Set up kubeconfig`
`271`	`281`	`run:\|`
`272`	`282`	`set -euo pipefail`

Lines changed: 3 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,12 +1,12 @@`
`1`		`-FROM rust:slim AS rust-utils`
	`1`	`+FROM rust:slim@sha256:9abf10cc84dfad6ace1b0aae3951dc5200f467c593394288c11db1e17bb4d349 AS rust-utils`
`2`	`2`	`# Install rust helper programs`
`3`	`3`	`# ENV CARGO_NET_GIT_FETCH_WITH_CLI=true`
`4`	`4`	`ENV CARGO_INSTALL_ROOT=/tmp/`
`5`	`5`	`RUN cargo install exa bat ripgrep typos-cli watchexec-cli && \`
`6`	`6`	`# Reduce image size.`
`7`	`7`	`rm -rf /usr/local/cargo/registry`
`8`	`8`
`9`		`-FROM ubuntu:jammy AS go`
	`9`	`+FROM ubuntu:jammy@sha256:0e5e4a57c2499249aafc3b40fcd541e9a456aab7296681a3994d631587203f97 AS go`
`10`	`10`
`11`	`11`	`# Install Go manually, so that we can control the version`
`12`	`12`	`ARG GO_VERSION=1.22.5`
`@@ -94,7 +94,7 @@ RUN curl -L -o protoc.zip https://github.com/protocolbuffers/protobuf/releases/d`
`94`	`94`	`unzip protoc.zip && \`
`95`	`95`	`rm protoc.zip`
`96`	`96`
`97`		`-FROM ubuntu:jammy`
	`97`	`+FROM ubuntu:jammy@sha256:0e5e4a57c2499249aafc3b40fcd541e9a456aab7296681a3994d631587203f97`
`98`	`98`
`99`	`99`	`SHELL ["/bin/bash","-c"]`
`100`	`100`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-FROM ubuntu`
	`1`	`+FROM ubuntu@sha256:99c35190e22d294cdace2783ac55effc69d32896daaa265f0bbedbcde4fbe3e5`
`2`	`2`
`3`	`3`	`RUN apt-get update \`
`4`	`4`	`&& apt-get install -y \`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -5,7 +5,7 @@`
`5`	`5`	`# Future improvements will include versioning and including the version`
`6`	`6`	`# in the template push.`
`7`	`7`
`8`		`-FROM codercom/enterprise-base:ubuntu`
	`8`	`+FROM codercom/enterprise-base:ubuntu@sha256:22837dba6f92f075c29797652699df748ec223e04dc87627f3d2bae0a6bce7bd`
`9`	`9`
`10`	`10`	`ARG DEBIAN_FRONTEND=noninteractive`
`11`	`11`

Comments

(0)