feature request: tag daily builds of images #4717
Comments
|
The documentation for the image, at https://github.com/containers/buildah/tree/main/contrib/buildahimage says
which suggests that while the underlying OS bits are expected to change on a daily basis, the I think that's a great policy, but I don't know whether it's not being implemented because the documentation is out of date and the current behavior is intentional or inadvertent.
Having tags for the past N builds seems reasonable, but I would also be happy with selecting the image version with the hash—only the older manifests don't seem to exist after they've been superseded, so that's not an option, unless I copy the image to a private repo. |
Hello, Is And so, the |
|
A friendly reminder that this issue had no activity for 30 days. |
Description
You are building the buildah container images on a daily base to avoid security-problems. I think this is fine and I welcome this 👍 .
If your build has a bug like the one in #4715, it's not possible for a user to rollback to an older image until the bug is fixed to get the pipelines running.
It would be nice to have tags of the builds for at least the last one or two weeks. When you cleanup the images on a regular base, you can avoid users relying on these tags abusively.
E.g. texlive uses this strategy for their images with weekly builds (registry-link with filter-example)
Steps to reproduce the issue:
Describe the results you received:
3. me: 🤷
Describe the results you expected:
The text was updated successfully, but these errors were encountered: