From 3c2707f8442903eb2088cb457e32ff0e145f9b3b Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Sun, 28 Apr 2024 00:43:01 +0000 Subject: [PATCH 1/8] Update dependency hvac to v2.2.0 --- jenkins-inbound-agent/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/jenkins-inbound-agent/Dockerfile b/jenkins-inbound-agent/Dockerfile index 3a8ea09..f2eb2a6 100644 --- a/jenkins-inbound-agent/Dockerfile +++ b/jenkins-inbound-agent/Dockerfile @@ -13,7 +13,7 @@ ARG COSIGN_VERSION=1.13.6 ARG SENTRY_CLI_VERSION=2.31.0 ARG CHECKOV_VERSION=3.2.72 ARG VAULT_CRD_RENDERER_VERSION=1.0.7 -ARG PIP_HVAC_VERSION=2.1.0 +ARG PIP_HVAC_VERSION=2.2.0 ARG KYVERNO_CLI_VERSION=v1.11.4 ENV PIP_BREAK_SYSTEM_PACKAGES=1 From b8f5e23d257f2eced593cc58277d9a0848f8c5dd Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Sun, 26 May 2024 00:44:22 +0000 Subject: [PATCH 2/8] Update dependency hashicorp/terraform to v1.8.4 --- jenkins-inbound-agent/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/jenkins-inbound-agent/Dockerfile b/jenkins-inbound-agent/Dockerfile index f9c8d4b..e00afda 100644 --- a/jenkins-inbound-agent/Dockerfile +++ b/jenkins-inbound-agent/Dockerfile @@ -4,7 +4,7 @@ USER root ARG VAULT_VERSION=1.16.1 ARG PACKER_VERSION=1.10.2 -ARG TERRAFORM_1_VERSION=1.8.1 +ARG TERRAFORM_1_VERSION=1.8.4 ARG KUBECTL_VERSION=1.26.8 ARG HELM_VERSION=v3.12.3 ARG ANSIBLE_VERSION=9.4.0 From 945e2b8aadc6a6d930830331a700d20abff278e5 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Sun, 26 May 2024 00:44:30 +0000 Subject: [PATCH 3/8] Update dependency ansible to v9.6.0 --- jenkins-inbound-agent/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/jenkins-inbound-agent/Dockerfile b/jenkins-inbound-agent/Dockerfile index f9c8d4b..a344566 100644 --- a/jenkins-inbound-agent/Dockerfile +++ b/jenkins-inbound-agent/Dockerfile @@ -7,7 +7,7 @@ ARG PACKER_VERSION=1.10.2 ARG TERRAFORM_1_VERSION=1.8.1 ARG KUBECTL_VERSION=1.26.8 ARG HELM_VERSION=v3.12.3 -ARG ANSIBLE_VERSION=9.4.0 +ARG ANSIBLE_VERSION=9.6.0 ARG INFRACOST_VERSION=v0.10.29 ARG COSIGN_VERSION=1.13.6 ARG SENTRY_CLI_VERSION=2.31.0 From cf164917a56ae42dfe038cf1ae62abe907db0087 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Sun, 2 Jun 2024 00:44:34 +0000 Subject: [PATCH 4/8] Update dependency hashicorp/vault to v1.16.3 --- jenkins-inbound-agent/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/jenkins-inbound-agent/Dockerfile b/jenkins-inbound-agent/Dockerfile index f9c8d4b..7efa6ff 100644 --- a/jenkins-inbound-agent/Dockerfile +++ b/jenkins-inbound-agent/Dockerfile @@ -2,7 +2,7 @@ FROM jenkins/inbound-agent:3148.v532a_7e715ee3-7 USER root -ARG VAULT_VERSION=1.16.1 +ARG VAULT_VERSION=1.16.3 ARG PACKER_VERSION=1.10.2 ARG TERRAFORM_1_VERSION=1.8.1 ARG KUBECTL_VERSION=1.26.8 From 4d03f724bab748bf0d8850c4ebe00f9ebfeb41df Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Sun, 2 Jun 2024 00:44:40 +0000 Subject: [PATCH 5/8] Update dependency getsentry/sentry-cli to v2.32.1 --- jenkins-inbound-agent/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/jenkins-inbound-agent/Dockerfile b/jenkins-inbound-agent/Dockerfile index f9c8d4b..01c3b5b 100644 --- a/jenkins-inbound-agent/Dockerfile +++ b/jenkins-inbound-agent/Dockerfile @@ -10,7 +10,7 @@ ARG HELM_VERSION=v3.12.3 ARG ANSIBLE_VERSION=9.4.0 ARG INFRACOST_VERSION=v0.10.29 ARG COSIGN_VERSION=1.13.6 -ARG SENTRY_CLI_VERSION=2.31.0 +ARG SENTRY_CLI_VERSION=2.32.1 ARG CHECKOV_VERSION=3.2.72 ARG VAULT_CRD_RENDERER_VERSION=1.0.7 ARG PIP_HVAC_VERSION=2.1.0 From fe2d616d7caf776201f1dfb2ccc0581b397edea0 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Sun, 2 Jun 2024 00:44:43 +0000 Subject: [PATCH 6/8] Update dependency hashicorp/packer to v1.11.0 --- jenkins-inbound-agent/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/jenkins-inbound-agent/Dockerfile b/jenkins-inbound-agent/Dockerfile index f9c8d4b..0d4fc58 100644 --- a/jenkins-inbound-agent/Dockerfile +++ b/jenkins-inbound-agent/Dockerfile @@ -3,7 +3,7 @@ FROM jenkins/inbound-agent:3148.v532a_7e715ee3-7 USER root ARG VAULT_VERSION=1.16.1 -ARG PACKER_VERSION=1.10.2 +ARG PACKER_VERSION=1.11.0 ARG TERRAFORM_1_VERSION=1.8.1 ARG KUBECTL_VERSION=1.26.8 ARG HELM_VERSION=v3.12.3 From fc0397b772aa5b9777d2ecacd0df11c22d8592e4 Mon Sep 17 00:00:00 2001 From: Kamil Krzywicki <12999736+camaeel@users.noreply.github.com> Date: Mon, 3 Jun 2024 14:54:35 +0200 Subject: [PATCH 7/8] add psql client to agent image (#93) --- jenkins-inbound-agent/Dockerfile | 1 + 1 file changed, 1 insertion(+) diff --git a/jenkins-inbound-agent/Dockerfile b/jenkins-inbound-agent/Dockerfile index f9c8d4b..ee075ef 100644 --- a/jenkins-inbound-agent/Dockerfile +++ b/jenkins-inbound-agent/Dockerfile @@ -28,6 +28,7 @@ RUN set -eux; \ init \ openssh-server openssh-client \ software-properties-common \ + postgresql-client-15 \ unzip \ libffi-dev \ jq \ From 59db96f08e9d5ec8dc88a3ddd19add4247829d14 Mon Sep 17 00:00:00 2001 From: Tobias Trabelsi Date: Wed, 5 Jun 2024 00:04:00 +0200 Subject: [PATCH 8/8] scripting hashsum detection of sentry cli --- jenkins-inbound-agent/Dockerfile | 4 ++-- utils/sentry_cli_hashsums.sh | 13 ------------- 2 files changed, 2 insertions(+), 15 deletions(-) delete mode 100644 utils/sentry_cli_hashsums.sh diff --git a/jenkins-inbound-agent/Dockerfile b/jenkins-inbound-agent/Dockerfile index 01c3b5b..b07558a 100644 --- a/jenkins-inbound-agent/Dockerfile +++ b/jenkins-inbound-agent/Dockerfile @@ -52,7 +52,7 @@ RUN set -eux; \ INFRACOST_DOWNLOAD_URL="https://github.com/infracost/infracost/releases/download/${INFRACOST_VERSION}"; \ COSIGN_DOWNLOAD_URL="https://github.com/sigstore/cosign/releases/download/v${COSIGN_VERSION}/cosign_${COSIGN_VERSION}_arm64.deb"; \ SENTRY_DOWNLOAD_URL="https://release-registry.services.sentry.io/apps/sentry-cli/${SENTRY_CLI_VERSION}?response=download&arch=aarch64&platform=Linux&package=sentry-cli"; \ - SENTRY_HASHSUM="2b92198d58ffd2f4551db6782b42b42ecc1ba3c7c7864f0c4ae84be940f927d3"; \ + SENTRY_HASHSUM=$(curl "https://release-registry.services.sentry.io/apps/sentry-cli/${SENTRY_CLI_VERSION}" | jq -r '.files."sentry-cli-Linux-aarch64".checksums."sha256-hex"');\ VAULT_CRD_RENDERER_URL="https://github.com/DaspawnW/vault-crd-helm-renderer/releases/download/v${VAULT_CRD_RENDERER_VERSION}"; \ KYVERNO_CLI_DOWNLOAD_URL="https://github.com/kyverno/kyverno/releases/download/${KYVERNO_CLI_VERSION}/kyverno-cli_${KYVERNO_CLI_VERSION}_linux_arm64.tar.gz" \ ;; \ @@ -67,7 +67,7 @@ RUN set -eux; \ INFRACOST_DOWNLOAD_URL="https://github.com/infracost/infracost/releases/download/${INFRACOST_VERSION}"; \ COSIGN_DOWNLOAD_URL="https://github.com/sigstore/cosign/releases/download/v${COSIGN_VERSION}/cosign_${COSIGN_VERSION}_amd64.deb"; \ SENTRY_DOWNLOAD_URL="https://release-registry.services.sentry.io/apps/sentry-cli/${SENTRY_CLI_VERSION}?response=download&arch=x86_64&platform=Linux&package=sentry-cli"; \ - SENTRY_HASHSUM="baeb5b4ca0a5e500d667087f0b7fbb2865d3b8f01896cfba5144433dbe59bebd"; \ + SENTRY_HASHSUM=$(curl "https://release-registry.services.sentry.io/apps/sentry-cli/${SENTRY_CLI_VERSION}" | jq -r '.files."sentry-cli-Linux-x86_64".checksums."sha256-hex"');\ VAULT_CRD_RENDERER_URL="https://github.com/DaspawnW/vault-crd-helm-renderer/releases/download/v${VAULT_CRD_RENDERER_VERSION}"; \ KYVERNO_CLI_DOWNLOAD_URL="https://github.com/kyverno/kyverno/releases/download/${KYVERNO_CLI_VERSION}/kyverno-cli_${KYVERNO_CLI_VERSION}_linux_x86_64.tar.gz" \ ;; \ diff --git a/utils/sentry_cli_hashsums.sh b/utils/sentry_cli_hashsums.sh deleted file mode 100644 index 730cf4e..0000000 --- a/utils/sentry_cli_hashsums.sh +++ /dev/null @@ -1,13 +0,0 @@ -#!/bin/bash - -SENTRY_CLI_VERSION=2.30.1 -SENTRY_DOWNLOAD_URL_ARM="https://release-registry.services.sentry.io/apps/sentry-cli/${SENTRY_CLI_VERSION}?response=download&arch=aarch64&platform=Linux&package=sentry-cli" -SENTRY_DOWNLOAD_URL_x86="https://release-registry.services.sentry.io/apps/sentry-cli/${SENTRY_CLI_VERSION}?response=download&arch=x86_64&platform=Linux&package=sentry-cli" - -curl -L "${SENTRY_DOWNLOAD_URL_ARM}" -o sentry-cli-arm -curl -L "${SENTRY_DOWNLOAD_URL_x86}" -o sentry-cli-x86 - -sha256sum sentry-cli-arm -sha256sum sentry-cli-x86 - -rm sentry-cli-x86 sentry-cli-arm \ No newline at end of file