Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Kind version from sha256 instead of tag #330

Merged
merged 3 commits into from
Dec 27, 2022
Merged

Kind version from sha256 instead of tag #330

merged 3 commits into from
Dec 27, 2022

Conversation

fmartingr
Copy link
Contributor

@fmartingr fmartingr commented Dec 25, 2022
edited
Loading

Summary

For security, set the kind version in the kind.x-k8s.io/v1alpha4/Cluster resource using the sha256 checksum instead of the image tag using two different files for the two architectures the kind team supports (amd64 & arm64)

Ticket Link

Relates to https://mattermost.atlassian.net/browse/MM-49370

Release Note

None

@fmartingr fmartingr added the 2: Dev Review Requires review by a developer label Dec 25, 2022
@fmartingr fmartingr self-assigned this Dec 25, 2022
@mm-cloud-bot mm-cloud-bot added kind/chore Categorizes issue or PR as related to updates that are not production code. release-note-none Denotes a PR that doesn't merit a release note. labels Dec 25, 2022
gabrieljackson
gabrieljackson approved these changes Dec 26, 2022
View reviewed changes
Copy link
Collaborator

@gabrieljackson gabrieljackson left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ah nice work. Are these SHAs for the v1.22.9 images? If so we can also bump them to a valid v1.23.X SHA. Either way, nice improvement.

@gabrieljackson
Copy link
Collaborator

Just re-ran the failed e2e tests and they still failed. Let me know if you need me to re-review this if any fixes need to be made.

@fmartingr fmartingr removed the request for review from mirshahriar December 26, 2022 08:11
@fmartingr fmartingr marked this pull request as draft December 26, 2022 08:11
@fmartingr
Copy link
Contributor Author

Ah nice work. Are these SHAs for the v1.22.9 images? If so we can also bump them to a valid v1.23.X SHA. Either way, nice improvement.

Upgrading the version to v1.23.19 makes the e2e tests fail (cause of the mysql operator...) so I'm leaving it at 1.22 for now until we figure out what to do with that.

@fmartingr fmartingr marked this pull request as ready for review December 26, 2022 08:29
@fmartingr fmartingr added 3: Reviews Complete All reviewers have approved the pull request and removed 2: Dev Review Requires review by a developer labels Dec 26, 2022
@fmartingr fmartingr merged commit d2a66d5 into master Dec 27, 2022
@fmartingr fmartingr deleted the chore/use-sha256-for-kind-images branch December 27, 2022 14:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mirshahriar mirshahriar mirshahriar approved these changes

@gabrieljackson gabrieljackson gabrieljackson approved these changes

Assignees

@fmartingr fmartingr

Labels
3: Reviews Complete All reviewers have approved the pull request kind/chore Categorizes issue or PR as related to updates that are not production code. release-note-none Denotes a PR that doesn't merit a release note.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@fmartingr @gabrieljackson @mirshahriar @mm-cloud-bot