Skip to content

Write build metadata to /i-am-rox-ci-image#249

Open
davdhacs wants to merge 9 commits intomainfrom
davdhacs/rox-ci-image-metadata
Open

Write build metadata to /i-am-rox-ci-image#249
davdhacs wants to merge 9 commits intomainfrom
davdhacs/rox-ci-image-metadata

Conversation

@davdhacs
Copy link
Copy Markdown
Contributor

@davdhacs davdhacs commented Apr 13, 2026
edited
Loading

Summary

  • Populate /i-am-rox-ci-image with rox-ci-image version, git commit SHA, and key tool versions at build time
  • Pass ROX_CI_IMAGE_VERSION and ROX_CI_IMAGE_GIT_COMMIT as build args from the Makefile
  • Each image flavor logs the tools relevant to it
  • This file is cat'd by the prow begin step (openshift/release#77727) for traceability when using floating tags like stable/latest

Example output (stackrox-test)

rox-ci-image-version=0.5.8
rox-ci-image-git-commit=abc123def456789...
aws=aws-cli/2.7.17 Python/3.9.11 Linux/5.15.0-1 exe/x86_64.centos.9 prompt/off
docker=Client:
 Version:           29.2.1
 API version:       1.47
 Go version:        go1.22.12
 ...
gcloud=Google Cloud SDK 512.0.0
go=go version go1.25.7 linux/amd64
gradle=
------------------------------------------------------------
Gradle 7.5.1
------------------------------------------------------------
...
helm=version.BuildInfo{Version:"v3.20.0", GitCommit:"...", ...}
java=openjdk version "17.0.14" 2025-01-21 LTS
kubectl=Client Version: v1.31.0
...
oc=Client Version: 4.11.0
roxie=roxie version 0.1.2
shellcheck=ShellCheck - shell script analysis tool
version: 0.10.0
...
vault=Vault v1.12.1
yq=yq (https://github.com/mikefarah/yq/) version v4.16.2

Test plan

  • CI builds succeed
  • Pull a built image and verify cat /i-am-rox-ci-image shows metadata

🤖 Generated with Claude Code

davdhacs and others added 4 commits April 13, 2026 11:58
@davdhacs @claude
Write build metadata to /i-am-rox-ci-image
24d2d7b 
Populate /i-am-rox-ci-image with rox-ci-image version, git SHA,
and key tool versions (go, gcc, helm, docker, kubectl, etc.)
at build time. This file is cat'd by the prow begin step for
traceability when using floating tags like stable/latest.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@davdhacs @claude
Add missing tool versions to metadata
5552d79 
Include gradle, aws, yq, gcloud, bats, roxie, shellcheck,
and vault in the /i-am-rox-ci-image metadata for all images
that install them.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@davdhacs @claude
Remove accidentally committed aci.dockerfile
b47f37b 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@davdhacs @claude
Add yarn, java versions to UI/test image metadata
8475421 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@github-actions
Copy link
Copy Markdown

github-actions bot commented Apr 13, 2026
edited
Loading

Build Images

Image Flavor Image Tag
jenkins-plugin quay.io/stackrox-io/apollo-ci:jenkins-plugin-0.5.7-9-g8dcc9f30f9
scanner-build quay.io/stackrox-io/apollo-ci:scanner-build-0.5.7-9-g8dcc9f30f9
scanner-test quay.io/stackrox-io/apollo-ci:scanner-test-0.5.7-9-g8dcc9f30f9
stackrox-build quay.io/stackrox-io/apollo-ci:stackrox-build-0.5.7-9-g8dcc9f30f9
stackrox-test quay.io/stackrox-io/apollo-ci:stackrox-test-0.5.7-9-g8dcc9f30f9
stackrox-ui-test quay.io/stackrox-io/apollo-ci:stackrox-ui-test-0.5.7-9-g8dcc9f30f9

davdhacs and others added 5 commits April 13, 2026 12:13
@davdhacs @claude
Simplify version output: remove grep/head/awk filtering
34c6ec0 
Let each tool's --version output through unmodified so we
don't hide useful information.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@davdhacs @claude
Remove stderr hiding and echo unknown fallbacks
ae4f0ca 
Let errors show naturally — empty or stderr output is
sufficient to know a tool is missing.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@davdhacs @claude
Sort tool versions alphabetically in metadata
30f2716 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@davdhacs @claude
Use full helm version output
21e6198 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@davdhacs @claude
Rename REVISION to GIT_COMMIT for clarity
8dcc9f3 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@davdhacs davdhacs requested a review from tommartensen April 13, 2026 18:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tommartensen tommartensen Awaiting requested review from tommartensen

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@davdhacs