build(deps): Bump the docker-images group across 4 directories with 5 updates#375
Conversation
… updates Bumps the docker-images group with 3 updates in the /crates/registry-relay directory: rust, distroless/cc-debian12 and debian. Bumps the docker-images group with 2 updates in the /products/notary directory: rust and distroless/cc-debian12. Bumps the docker-images group with 2 updates in the /release/conformance/openid directory: nginx and eclipse-temurin. Bumps the docker-images group with 2 updates in the /release/docker directory: distroless/cc-debian12 and debian. Updates `rust` from `6258907` to `8fa55b2` Updates `distroless/cc-debian12` from `bd2899c` to `66aa873` Updates `debian` from `0104b33` to `7b140f3` Updates `rust` from `54152db` to `8fa55b2` Updates `distroless/cc-debian12` from `b0ae8e9` to `66aa873` Updates `nginx` from 1.27.3 to 1.31.3 Updates `eclipse-temurin` from 21 to 25 Updates `distroless/cc-debian12` from `ce0d66b` to `66aa873` Updates `debian` from `60eac75` to `7b140f3` --- updated-dependencies: - dependency-name: rust dependency-version: 1-bookworm dependency-type: direct:production dependency-group: docker-images - dependency-name: distroless/cc-debian12 dependency-version: nonroot dependency-type: direct:production dependency-group: docker-images - dependency-name: debian dependency-version: bookworm-slim dependency-type: direct:production dependency-group: docker-images - dependency-name: rust dependency-version: 1-bookworm dependency-type: direct:production dependency-group: docker-images - dependency-name: distroless/cc-debian12 dependency-version: nonroot dependency-type: direct:production dependency-group: docker-images - dependency-name: nginx dependency-version: 1.31.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docker-images - dependency-name: eclipse-temurin dependency-version: '25' dependency-type: direct:production update-type: version-update:semver-major dependency-group: docker-images - dependency-name: distroless/cc-debian12 dependency-version: nonroot dependency-type: direct:production dependency-group: docker-images - dependency-name: debian dependency-version: bookworm-slim dependency-type: direct:production dependency-group: docker-images ... Signed-off-by: dependabot[bot] <support@github.com>
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: a86f7d5d10
ℹ️ About Codex in GitHub
Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".
| @@ -1,4 +1,4 @@ | |||
| FROM nginx:1.27.3@sha256:bc2f6a7c8ddbccf55bdb19659ce3b0a92ca6559e86d42677a5a02ef6bda2fcef | |||
| FROM nginx:1.31.3@sha256:5a88c9c45479443d7be2eadc894b4ed0a9801bae03d97a5760ae13b5c2005942 | |||
There was a problem hiding this comment.
Keep conformance image pins in sync with tests
In the release conformance tests I inspected (release/scripts/test_openid_conformance_runner.py::test_runtime_override_pins_built_image_bases), the runner still asserts nginx:1.27.3@sha256: and then eclipse-temurin:21@sha256:. With this image bump, the documented release check python3 -m unittest release/scripts/test_openid_conformance_runner.py fails on the nginx assertion, and the Java assertion is stale as well, so this commit cannot pass the release gate unless the expected pins are updated or the base bumps are reverted.
Useful? React with 👍 / 👎.
Bumps the docker-images group with 3 updates in the /crates/registry-relay directory: rust, distroless/cc-debian12 and debian.
Bumps the docker-images group with 2 updates in the /products/notary directory: rust and distroless/cc-debian12.
Bumps the docker-images group with 2 updates in the /release/conformance/openid directory: nginx and eclipse-temurin.
Bumps the docker-images group with 2 updates in the /release/docker directory: distroless/cc-debian12 and debian.
Updates
rustfrom6258907to8fa55b2Updates
distroless/cc-debian12frombd2899cto66aa873Updates
debianfrom0104b33to7b140f3Updates
rustfrom54152dbto8fa55b2Updates
distroless/cc-debian12fromb0ae8e9to66aa873Updates
nginxfrom 1.27.3 to 1.31.3Updates
eclipse-temurinfrom 21 to 25Updates
distroless/cc-debian12fromce0d66bto66aa873Updates
debianfrom60eac75to7b140f3Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions