Pinned dependencies reduce several security risks:
They ensure that checking and deployment are all done with the same software, reducing deployment risks, simplifying debugging, and enabling reproducibility.
They can help mitigate compromised dependencies from undermining the security of the project (in the case where you've evaluated
after looking into it with docker inspect, it seem the binary is actually on /ko-app instead of /bin.
build was failing on master (branches are not running the whole goreleaser process rn)
cc/ @cpanato
* feat: use go 1.17
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: go mod tidy
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* test: fix failing test
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* ci: increase lint timeout
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* ci: increase lint timeout
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* add buildx to Docker image to support multi-arch docker builds
* add docker-cli-buildx to support multi-arch builds
Co-authored-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
* feat: support apple silicon
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: test
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* feat: go 1.16
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* feat: go 1.16
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* feat: go 1.16
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* test: fix
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: test case
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* Update .github/workflows/build.yml
Co-authored-by: Radek Simko <radek.simko@gmail.com>
* docs: go 1.16
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
Co-authored-by: Radek Simko <radek.simko@gmail.com>
* feat: copy nfpms to docker image too
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* test: wip
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: logs
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* test: fixes
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* test: improving
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* docs: deprecations and docker improvements
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: revert .goreleaser.yml changes
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* test: fix
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* docs: fix syntax
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* docs: fixed deprecation warnings
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* test: fix
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* test: coverage
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* test: add one more test case
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* test: fix
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* test: fix
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com>
* feat: multi-arch docker images
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* feat: split files
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* docs: manifest
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* refactor: split files
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* test: added some
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* docs: flags
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: fmt
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: diff
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* ci: enable experimental
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* ci: multi-arch goreleaser images
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* feat: upgrade to go 1.14
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: tests
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: test
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: test
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* feat: go 1.13
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: go.mod
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* feat: update to go 1.13
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* bump: deps
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: deps
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: trying replace
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: go mod init
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
* fix: disable funlen lint
Signed-off-by: Carlos Alexandro Becker <caarlos0@gmail.com>
Layers are now cleaned up and ordered in a way to minimize breaking of
the cache. Additional Docker key fingerprint checking has been added to
ensure that we get the eky we are expecting from Docker website.
