Skip to content

ci: opt-in sbom and provenance#3345

Merged
tonistiigi merged 2 commits intomoby:masterfrom
crazy-max:ci-sbom
Dec 13, 2022
Merged

ci: opt-in sbom and provenance#3345
tonistiigi merged 2 commits intomoby:masterfrom
crazy-max:ci-sbom

Conversation

@crazy-max
Copy link
Copy Markdown
Member

@crazy-max crazy-max commented Dec 1, 2022

fixes #3337

Signed-off-by: CrazyMax crazy-max@users.noreply.github.com

@crazy-max crazy-max mentioned this pull request Dec 1, 2022
Closed
@crazy-max crazy-max force-pushed the ci-sbom branch 2 times, most recently from f9aec80 to 468a023 Compare December 6, 2022 17:35
@jedevc jedevc added this to the v0.11.0 milestone Dec 8, 2022
@jedevc
Copy link
Copy Markdown
Member

jedevc commented Dec 8, 2022

#3362 still appears to be an issue on this.

@tonistiigi tonistiigi force-pushed the ci-sbom branch 2 times, most recently from c2864e8 to 602d6f9 Compare December 11, 2022 05:50
@crazy-max
Copy link
Copy Markdown
Member Author

crazy-max commented Dec 11, 2022
edited
Loading

https://github.com/moby/buildkit/actions/runs/3670005717/jobs/6204266362#step:6:437

#70 [integration-tests 1/1] COPY . .
#70 DONE 3.6s

#71 exporting to docker image format
#71 ERROR: docker exporter does not currently support exporting manifest lists
------
 > exporting to docker image format:
------
ERROR: failed to solve: docker exporter does not currently support exporting manifest lists
Error: Process completed with exit code 1.

Looks like docker/buildx#1412 breaks docker exporter.

EDIT: Opened docker/buildx#1460 to add a simple test to load to docker store and seems it fails using BuildKit master image only: https://github.com/docker/buildx/actions/runs/3670274233/jobs/6204712919

@tonistiigi tonistiigi force-pushed the ci-sbom branch 4 times, most recently from 4aa5a76 to dce95de Compare December 11, 2022 21:59
@crazy-max crazy-max force-pushed the ci-sbom branch 3 times, most recently from 8d70328 to 3c49c6f Compare December 12, 2022 15:56
@jedevc jedevc force-pushed the ci-sbom branch 2 times, most recently from 58b1793 to 491ea10 Compare December 12, 2022 16:35
@tonistiigi tonistiigi force-pushed the ci-sbom branch 3 times, most recently from ef21fdb to 4f3c557 Compare December 13, 2022 04:20
@jedevc jedevc force-pushed the ci-sbom branch 3 times, most recently from 57d210f to 06d43f7 Compare December 13, 2022 11:15
@crazy-max crazy-max force-pushed the ci-sbom branch 2 times, most recently from 0f464de to bd910c9 Compare December 13, 2022 19:28
@crazy-max crazy-max marked this pull request as ready for review December 13, 2022 19:29
tonistiigi
tonistiigi reviewed Dec 13, 2022
View reviewed changes
Comment thread .github/workflows/build.yml Outdated
Comment thread .github/workflows/build.yml Outdated
tonistiigi
tonistiigi reviewed Dec 13, 2022
View reviewed changes
Comment thread hack/util Outdated
@crazy-max crazy-max force-pushed the ci-sbom branch 2 times, most recently from 43eca87 to 8631b2b Compare December 13, 2022 20:37
@crazy-max
ci: opt-in sbom and provenance
a0055e0 
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
@crazy-max
hack: cleanup util script
493a968 
Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
@crazy-max crazy-max requested a review from tonistiigi December 13, 2022 21:17
@tonistiigi tonistiigi merged commit 9eb0a5d into moby:master Dec 13, 2022
@crazy-max crazy-max deleted the ci-sbom branch December 13, 2022 23:15
@crazy-max crazy-max mentioned this pull request Dec 15, 2022
Merged
@jedevc jedevc mentioned this pull request Jan 24, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tonistiigi tonistiigi tonistiigi approved these changes

@jedevc jedevc Awaiting requested review from jedevc

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

v0.11.0

Development

Successfully merging this pull request may close these issues.

Update CI to build SBOM/Provenance artifacts with the release

3 participants

@crazy-max @jedevc @tonistiigi