Skip to content

Bump docker.io/aquasec/trivy from 0.52.2 to #1934

Bump docker.io/aquasec/trivy from 0.52.2 to

Bump docker.io/aquasec/trivy from 0.52.2 to #1934

name: Update images in sample build strategies
on:
schedule:
- cron: '0 0 * * *'
issue_comment:
types: [created, edited]
jobs:
check-new-versions:
if: contains(github.event.comment.body, '/rebase') || github.event_name == 'schedule'
runs-on: ubuntu-latest
strategy:
matrix:
include:
- image: gcr.io/kaniko-project/executor
latest-release-url: https://api.github.com/repos/GoogleContainerTools/kaniko/releases/latest
- image: docker.io/aquasec/trivy
latest-release-url: https://api.github.com/repos/aquasecurity/trivy/releases/latest
- image: quay.io/containers/buildah
latest-release-url: https://quay.io/api/v1/repository/containers/buildah/tag/
- image: gcr.io/go-containerregistry/crane
latest-release-url: https://api.github.com/repos/google/go-containerregistry/releases/latest
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Check and modify ${{ matrix.image }}
env:
IMAGE: ${{ matrix.image }}
LATEST_RELEASE_URL: ${{ matrix.latest-release-url }}
run: |
for directory in docs pkg samples test; do hack/check-latest-images.sh ${IMAGE} ${LATEST_RELEASE_URL} ${directory}; done
- name: Check image change
run: |
echo "FROM=$(git diff --unified=0 | grep '^[-].*image: .*/.*/.*:' | head --lines=1 | cut --delimiter=':' --fields='3' | sed 's/[^[[:digit:].]//g')" >> $GITHUB_OUTPUT
echo "TO=$(git diff --unified=0 | grep '^[+].*image: .*/.*/.*:' | head --lines=1 | cut --delimiter=':' --fields='3' | sed 's/[^[[:digit:].]//g')" >> $GITHUB_OUTPUT
id: image-diff
- name: Create pull request
uses: peter-evans/create-pull-request@v6
with:
commit-message: Bump ${{ matrix.image }} from ${{ steps.image-diff.outputs.FROM }} to ${{ steps.image-diff.outputs.TO }}
title: Bump ${{ matrix.image }} from ${{ steps.image-diff.outputs.FROM }} to ${{ steps.image-diff.outputs.TO }}
body: |
# Changes
Bumps ${{ matrix.image }} from ${{ steps.image-diff.outputs.FROM }} to ${{ steps.image-diff.outputs.TO }}.
You can trigger a rebase manually by commenting `/rebase` and resolve any conflicts with this PR.
# Submitter Checklist
- [ ] Includes tests if functionality changed/was added
- [ ] Includes docs if changes are user-facing
- [x] [Set a kind label on this PR](https://prow.k8s.io/command-help#kind)
- [x] Release notes block has been filled in, or marked NONE
# Release Notes
```release-note
NONE
```
labels: kind/dependency-change
branch: ${{ matrix.image }}
delete-branch: true