Skip to content

Commit 2a68e6a

Browse files
authored
chore: update release publish task (#1689)
Update release/publish.yaml to align with current Tekton release infrastructure patterns. - Bump apiVersion from v1beta1 to v1 - Update ko image to Go 1.26.3 - Update crane and koparse image digests - Update imageRegistryUser default to _json_key - Remove stale GO111MODULE=off env var - Add git safe.directory fix for container builds - Comment out regional images in IMAGES result (pipeline#4282) Signed-off-by: ab-ghosh <abghosh@redhat.com>
1 parent a92b4fd commit 2a68e6a

1 file changed

Lines changed: 12 additions & 9 deletions

File tree

release/publish.yaml

Lines changed: 12 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -13,7 +13,7 @@
1313
# limitations under the License.
1414

1515
# Modified for chains from tekton triggers: https://github.com/tektoncd/triggers/blob/main/tekton/publish.yaml
16-
apiVersion: tekton.dev/v1beta1
16+
apiVersion: tekton.dev/v1
1717
kind: Task
1818
metadata:
1919
name: publish-chains-release
@@ -43,7 +43,7 @@ spec:
4343
default: ""
4444
- name: imageRegistryUser
4545
description: Username to be used to login to the container registry
46-
default: "tekton-robot"
46+
default: "_json_key"
4747
- name: releaseAsLatest
4848
description: Whether to tag and publish this release as chainss' latest
4949
default: "true"
@@ -89,7 +89,7 @@ spec:
8989
steps:
9090

9191
- name: container-registry-auth
92-
image: cgr.dev/chainguard/crane:latest-dev@sha256:81a5126672ca23e7706f2c838c841790274641d50c5ff852542062cefde0f36a
92+
image: cgr.dev/chainguard/crane:latest-dev@sha256:91d5d0d8eab3ad0a4bf9d082e2ab28e496d662d0b2c1a51cc1e6e4c380ffb14c
9393
script: |
9494
#!/bin/sh
9595
set -ex
@@ -109,12 +109,10 @@ spec:
109109
110110
111111
- name: run-ko
112-
image: ghcr.io/tektoncd/plumbing/ko@sha256:990ec7fc709567e0d26fa40788a040b97598343d2fcb7252751316e34f31c4cc
112+
image: ghcr.io/tektoncd/plumbing/ko@sha256:f84dda0237cdaf9a6c2f15a56a380bd97ac2d5a554714818d7500056d2c7d449
113113
env:
114114
- name: KO_DOCKER_REPO
115115
value: $(params.imageRegistry)/$(params.imageRegistryPath)
116-
- name: GO111MODULE
117-
value: "off"
118116
- name: GOFLAGS
119117
value: "-mod=vendor"
120118
script: |
@@ -126,6 +124,9 @@ spec:
126124
mkdir -p ${DOCKER_CONFIG}
127125
cp /workspace/docker-config.json ${DOCKER_CONFIG}/config.json
128126
127+
# Fix Git ownership issue for the repository directory
128+
git config --global --add safe.directory ${PROJECT_ROOT}
129+
129130
# Change to directory with our .ko.yaml
130131
cd ${PROJECT_ROOT}
131132
@@ -168,7 +169,7 @@ spec:
168169
sed -i -e 's/\(pipeline.tekton.dev\/release\): "devel"/\1: "$(params.versionTag)"/g' -e 's/\(app.kubernetes.io\/version\): "devel"/\1: "$(params.versionTag)"/g' -e 's/\(version\): "devel"/\1: "$(params.versionTag)"/g' ${OUTPUT_RELEASE_DIR}/release.yaml
169170
sed -i -e 's/\(pipeline.tekton.dev\/release\): "devel"/\1: "$(params.versionTag)"/g' -e 's/\(app.kubernetes.io\/version\): "devel"/\1: "$(params.versionTag)"/g' -e 's/\(version\): "devel"/\1: "$(params.versionTag)"/g' ${OUTPUT_RELEASE_DIR}/release.notags.yaml
170171
- name: koparse
171-
image: ghcr.io/tektoncd/plumbing/koparse@sha256:7ea59fefb312a512973f743298c17217ca96f0e9303f8d40ebbf2d27ceb9f21e
172+
image: ghcr.io/tektoncd/plumbing/koparse@sha256:939dad5cf7c613b6b54387dfceca51e9a0f367e3cc5fbd04c7012af6c38e0717
172173
script: |
173174
set -ex
174175
@@ -202,7 +203,7 @@ spec:
202203
${PRESERVE_IMPORT_PATH} > /workspace/built_images
203204
204205
- name: tag-images
205-
image: cgr.dev/chainguard/crane:latest-dev@sha256:81a5126672ca23e7706f2c838c841790274641d50c5ff852542062cefde0f36a
206+
image: cgr.dev/chainguard/crane:latest-dev@sha256:91d5d0d8eab3ad0a4bf9d082e2ab28e496d662d0b2c1a51cc1e6e4c380ffb14c
206207
script: |
207208
#!/bin/sh
208209
set -ex
@@ -238,6 +239,8 @@ spec:
238239
TAG="$(params.versionTag)"
239240
crane cp ${IMAGE_WITH_SHA} ${REGION}.${IMAGE_WITHOUT_SHA_AND_TAG}:$TAG
240241
fi
241-
echo ${REGION}.$IMAGE_WITH_SHA, >> $(results.IMAGES.path)
242+
# Until we are able to store larger results, we cannot include the
243+
# regional copies of the images in the result - see https://github.com/tektoncd/pipeline/issues/4282
244+
# echo ${REGION}.$IMAGE_WITH_SHA, >> $(results.IMAGES.path)
242245
done
243246
done

0 commit comments

Comments
 (0)