From 0e1cd6d12fabef60a3ca4b51c6478d580804c59c Mon Sep 17 00:00:00 2001 From: Kyma Bot Date: Tue, 22 Oct 2024 12:55:35 +0000 Subject: [PATCH] Bumping test-infra and testimages MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit No eu.gcr.io/kyma-project/test-infra/ changes. europe-docker.pkg.dev/kyma-project/prod/ changes: https://github.com/kyma-project/test-infra/compare/db7fb7b8...0ba5f3bb (2024‑10‑22 → 2024‑10‑22) --- .github/actions/image-builder/action.yml | 2 +- .github/workflows/autobump-docs-index-md.yml | 2 +- .github/workflows/hello-world.yml | 2 +- .github/workflows/image-syncer.yml | 2 +- .../workflows/pull-validate-kaniko-build-config.yml | 2 +- .github/workflows/push-update-security-config.yaml | 2 +- .../dev/secrets-rotator/terraform.tfvars | 4 ++-- configs/terraform/environments/prod/terraform.tfvars | 4 ++-- configs/terraform/modules/cors-proxy/cors-proxy.tf | 2 +- .../github-webhook-gateway/github-webhook-gateway.tf | 2 +- .../secrets-leaks-log-scanner/gcs-bucket-mover.tf | 2 +- .../github-issue-creator.tf | 2 +- .../secrets-leaks-log-scanner/github-issue-finder.tf | 2 +- .../secrets-leak-log-scanner.tf | 2 +- .../security-dashboard-token.tf | 2 +- .../automated-approver_external-plugin.yaml | 2 +- .../external_secrets_checker_prow.yaml | 6 +++--- prow/jobs/kyma-project/test-infra/image-syncer.yaml | 4 ++-- prow/jobs/kyma-project/test-infra/kyma-bot.yaml | 2 +- prow/jobs/kyma-project/test-infra/periodics.yaml | 12 ++++++------ 20 files changed, 30 insertions(+), 30 deletions(-) diff --git a/.github/actions/image-builder/action.yml b/.github/actions/image-builder/action.yml index e412f45b9be7..75ca4af28455 100644 --- a/.github/actions/image-builder/action.yml +++ b/.github/actions/image-builder/action.yml @@ -78,7 +78,7 @@ runs: id: prepare-tags shell: bash - - uses: docker://europe-docker.pkg.dev/kyma-project/prod/image-builder:v20241022-db7fb7b8 + - uses: docker://europe-docker.pkg.dev/kyma-project/prod/image-builder:v20241022-0ba5f3bb id: build with: args: --name=${{ inputs.image-name }} --context=${{ inputs.context }} --dockerfile=${{ inputs.dockerfile }} --azure-access-token=${{ inputs.ado-token }} --oidc-token=${{ inputs.oidc-token }} ${{ steps.prepare-build-args.outputs.build-args }} ${{ steps.prepare-tags.outputs.tags }} --export-tags=${{ inputs.export-tags }} --config=${{ inputs.config }} --env-file=${{ inputs.env-file }} --build-in-ado=true \ No newline at end of file diff --git a/.github/workflows/autobump-docs-index-md.yml b/.github/workflows/autobump-docs-index-md.yml index 3c46aaa261a2..88649196be2f 100644 --- a/.github/workflows/autobump-docs-index-md.yml +++ b/.github/workflows/autobump-docs-index-md.yml @@ -58,6 +58,6 @@ jobs: -v ${{ github.workspace }}:/github/test-infra \ --workdir /github/test-infra \ --user $UID \ - europe-docker.pkg.dev/kyma-project/prod/markdown-index:v20241022-db7fb7b8 \ + europe-docker.pkg.dev/kyma-project/prod/markdown-index:v20241022-0ba5f3bb \ --config=${{ env.AUTOBUMP_CONFIG_PATH }} \ --labels-override=kind/chore,area/documentation diff --git a/.github/workflows/hello-world.yml b/.github/workflows/hello-world.yml index 53bae4fb7653..cf5085d6789e 100644 --- a/.github/workflows/hello-world.yml +++ b/.github/workflows/hello-world.yml @@ -47,6 +47,6 @@ jobs: -v ${{ github.workspace }}:/github/workspace \ --workdir /github/workspace \ --user $UID \ - europe-docker.pkg.dev/kyma-project/prod/markdown-index:v20241022-db7fb7b8 \ + europe-docker.pkg.dev/kyma-project/prod/markdown-index:v20241022-0ba5f3bb \ --config=${{ env.AUTOBUMP_CONFIG_PATH }} \ --labels-override=kind/chore,area/documentation diff --git a/.github/workflows/image-syncer.yml b/.github/workflows/image-syncer.yml index 2a7e500980ea..369c92adad8c 100644 --- a/.github/workflows/image-syncer.yml +++ b/.github/workflows/image-syncer.yml @@ -100,7 +100,7 @@ jobs: --workdir /github/workspace --rm --volume "$GITHUB_WORKSPACE:/github/workspace" - europe-docker.pkg.dev/kyma-project/prod/image-syncer:v20241022-db7fb7b8 + europe-docker.pkg.dev/kyma-project/prod/image-syncer:v20241022-0ba5f3bb --images-file=/github/workspace/external-images.yaml --access-token=${{ steps.authenticate_in_gcp.outputs.access_token }} --dry-run=${{ steps.set_dry_run_flag.outputs.DRY_RUN }} diff --git a/.github/workflows/pull-validate-kaniko-build-config.yml b/.github/workflows/pull-validate-kaniko-build-config.yml index fa5df7e44da0..8fb31eef2e4f 100644 --- a/.github/workflows/pull-validate-kaniko-build-config.yml +++ b/.github/workflows/pull-validate-kaniko-build-config.yml @@ -50,7 +50,7 @@ jobs: secrets: |- ado-pat:${{ vars.GCP_KYMA_PROJECT_PROJECT_ID }}/${{ vars.IMAGE_BUILDER_ADO_PAT_GCP_SECRET_NAME }} - - uses: docker://europe-docker.pkg.dev/kyma-project/prod/image-builder:v20241022-db7fb7b8 + - uses: docker://europe-docker.pkg.dev/kyma-project/prod/image-builder:v20241022-0ba5f3bb id: build with: args: --name=test-infra/ginkgo --context=. --dockerfile=prow/images/ginkgo/Dockerfile --azure-access-token=${{ steps.secrets.outputs.ado-pat }} --oidc-token=${{ steps.get_oidc.outputs.jwt }} --env-file='envs' --build-in-ado=true --test-kaniko-build-config=true --config="./configs/image-builder-client-config.yaml" \ No newline at end of file diff --git a/.github/workflows/push-update-security-config.yaml b/.github/workflows/push-update-security-config.yaml index 9bac9723ad6d..814a77f11e44 100644 --- a/.github/workflows/push-update-security-config.yaml +++ b/.github/workflows/push-update-security-config.yaml @@ -70,7 +70,7 @@ jobs: --workdir /github/workspace \ --rm \ --user $UID \ - europe-docker.pkg.dev/kyma-project/prod/image-detector:v20241022-db7fb7b8 \ + europe-docker.pkg.dev/kyma-project/prod/image-detector:v20241022-0ba5f3bb \ --terraform-dir=${{ env.TERRAFORM_CONFIGS_DIR }} \ --sec-scanner-config=${{ env.SEC_SCANNERS_CONFIG_PATH }} \ --autobump-config=${{ env.AUTOBUMP_CONFIG_PATH }} diff --git a/configs/terraform/environments/dev/secrets-rotator/terraform.tfvars b/configs/terraform/environments/dev/secrets-rotator/terraform.tfvars index 5140df1a1ae4..4f300d1a37ec 100644 --- a/configs/terraform/environments/dev/secrets-rotator/terraform.tfvars +++ b/configs/terraform/environments/dev/secrets-rotator/terraform.tfvars @@ -1,8 +1,8 @@ project_id = "sap-kyma-neighbors-dev" region = "europe-west3" service_account_keys_rotator_service_name = "service-account-keys-rotator" -service_account_keys_rotator_image = "europe-docker.pkg.dev/kyma-project/prod/test-infra/rotate-service-account:v20241022-db7fb7b8" #gitleaks:allow +service_account_keys_rotator_image = "europe-docker.pkg.dev/kyma-project/prod/test-infra/rotate-service-account:v20241022-0ba5f3bb" #gitleaks:allow service_account_keys_cleaner_service_name = "service-account-keys-cleaner" -service_account_keys_cleaner_image = "europe-docker.pkg.dev/kyma-project/prod/test-infra/service-account-keys-cleaner:v20241022-db7fb7b8" #gitleaks:allow +service_account_keys_cleaner_image = "europe-docker.pkg.dev/kyma-project/prod/test-infra/service-account-keys-cleaner:v20241022-0ba5f3bb" #gitleaks:allow service_account_key_latest_version_min_age = 24 service_account_keys_cleaner_scheduler_cron_schedule = "0 0 * * 1-5" diff --git a/configs/terraform/environments/prod/terraform.tfvars b/configs/terraform/environments/prod/terraform.tfvars index 2051b33bbd54..b7435d6dedf1 100644 --- a/configs/terraform/environments/prod/terraform.tfvars +++ b/configs/terraform/environments/prod/terraform.tfvars @@ -8,9 +8,9 @@ kyma_project_artifact_registry_collection = { }, } service_account_keys_rotator_service_name = "service-account-keys-rotator" -service_account_keys_rotator_image = "europe-docker.pkg.dev/kyma-project/prod/test-infra/rotate-service-account:v20241022-db7fb7b8" #gitleaks:allow +service_account_keys_rotator_image = "europe-docker.pkg.dev/kyma-project/prod/test-infra/rotate-service-account:v20241022-0ba5f3bb" #gitleaks:allow service_account_keys_cleaner_service_name = "service-account-keys-cleaner" -service_account_keys_cleaner_image = "europe-docker.pkg.dev/kyma-project/prod/test-infra/service-account-keys-cleaner:v20241022-db7fb7b8" #gitleaks:allow +service_account_keys_cleaner_image = "europe-docker.pkg.dev/kyma-project/prod/test-infra/service-account-keys-cleaner:v20241022-0ba5f3bb" #gitleaks:allow service_account_key_latest_version_min_age = 24 service_account_keys_cleaner_scheduler_cron_schedule = "0 0 * * 1-5" diff --git a/configs/terraform/modules/cors-proxy/cors-proxy.tf b/configs/terraform/modules/cors-proxy/cors-proxy.tf index dfd0a382b79b..38f59ff6817f 100644 --- a/configs/terraform/modules/cors-proxy/cors-proxy.tf +++ b/configs/terraform/modules/cors-proxy/cors-proxy.tf @@ -28,7 +28,7 @@ resource "google_cloud_run_service" "cors_proxy" { template { spec { containers { - image = "europe-docker.pkg.dev/kyma-project/prod/cors-proxy:v20241022-db7fb7b8" + image = "europe-docker.pkg.dev/kyma-project/prod/cors-proxy:v20241022-0ba5f3bb" env { name = "COMPONENT_NAME" value = "cors-proxy" diff --git a/configs/terraform/modules/github-webhook-gateway/github-webhook-gateway.tf b/configs/terraform/modules/github-webhook-gateway/github-webhook-gateway.tf index ac6111cfe1ad..54fb8a2c9a70 100644 --- a/configs/terraform/modules/github-webhook-gateway/github-webhook-gateway.tf +++ b/configs/terraform/modules/github-webhook-gateway/github-webhook-gateway.tf @@ -67,7 +67,7 @@ resource "google_cloud_run_service" "github_webhook_gateway" { spec { service_account_name = google_service_account.github_webhook_gateway.email containers { - image = "europe-docker.pkg.dev/kyma-project/prod/github-webhook-gateway:v20241022-db7fb7b8" + image = "europe-docker.pkg.dev/kyma-project/prod/github-webhook-gateway:v20241022-0ba5f3bb" env { name = "PROJECT_ID" value = var.gcp_project_id diff --git a/configs/terraform/modules/secrets-leaks-log-scanner/gcs-bucket-mover.tf b/configs/terraform/modules/secrets-leaks-log-scanner/gcs-bucket-mover.tf index 40952eadb436..399cbb365178 100644 --- a/configs/terraform/modules/secrets-leaks-log-scanner/gcs-bucket-mover.tf +++ b/configs/terraform/modules/secrets-leaks-log-scanner/gcs-bucket-mover.tf @@ -47,7 +47,7 @@ resource "google_cloud_run_service" "gcs_bucket_mover" { spec { service_account_name = google_service_account.gcs_bucket_mover.email containers { - image = "europe-docker.pkg.dev/kyma-project/prod/move-gcs-bucket:v20241022-db7fb7b8" + image = "europe-docker.pkg.dev/kyma-project/prod/move-gcs-bucket:v20241022-0ba5f3bb" env { name = "PROJECT_ID" value = var.gcp_project_id diff --git a/configs/terraform/modules/secrets-leaks-log-scanner/github-issue-creator.tf b/configs/terraform/modules/secrets-leaks-log-scanner/github-issue-creator.tf index b7b02d0723df..1ce1be2df451 100644 --- a/configs/terraform/modules/secrets-leaks-log-scanner/github-issue-creator.tf +++ b/configs/terraform/modules/secrets-leaks-log-scanner/github-issue-creator.tf @@ -24,7 +24,7 @@ resource "google_cloud_run_service" "github_issue_creator" { spec { service_account_name = google_service_account.github_issue_creator.email containers { - image = "europe-docker.pkg.dev/kyma-project/prod/create-github-issue:v20241022-db7fb7b8" + image = "europe-docker.pkg.dev/kyma-project/prod/create-github-issue:v20241022-0ba5f3bb" env { name = "PROJECT_ID" value = var.gcp_project_id diff --git a/configs/terraform/modules/secrets-leaks-log-scanner/github-issue-finder.tf b/configs/terraform/modules/secrets-leaks-log-scanner/github-issue-finder.tf index 22db2c56f483..9ebb205581aa 100644 --- a/configs/terraform/modules/secrets-leaks-log-scanner/github-issue-finder.tf +++ b/configs/terraform/modules/secrets-leaks-log-scanner/github-issue-finder.tf @@ -24,7 +24,7 @@ resource "google_cloud_run_service" "github_issue_finder" { spec { service_account_name = google_service_account.github_issue_finder.email containers { - image = "europe-docker.pkg.dev/kyma-project/prod/search-github-issue:v20241022-db7fb7b8" + image = "europe-docker.pkg.dev/kyma-project/prod/search-github-issue:v20241022-0ba5f3bb" env { name = "PROJECT_ID" value = var.gcp_project_id diff --git a/configs/terraform/modules/secrets-leaks-log-scanner/secrets-leak-log-scanner.tf b/configs/terraform/modules/secrets-leaks-log-scanner/secrets-leak-log-scanner.tf index e259d83eaa79..1658bdf774c0 100644 --- a/configs/terraform/modules/secrets-leaks-log-scanner/secrets-leak-log-scanner.tf +++ b/configs/terraform/modules/secrets-leaks-log-scanner/secrets-leak-log-scanner.tf @@ -23,7 +23,7 @@ resource "google_cloud_run_service" "secrets_leak_log_scanner" { spec { service_account_name = google_service_account.secrets_leak_log_scanner.email containers { - image = "europe-docker.pkg.dev/kyma-project/prod/scan-logs-for-secrets:v20241022-db7fb7b8" #gitleaks:allow + image = "europe-docker.pkg.dev/kyma-project/prod/scan-logs-for-secrets:v20241022-0ba5f3bb" #gitleaks:allow env { name = "PROJECT_ID" value = var.gcp_project_id diff --git a/configs/terraform/modules/security-dashboard-token/security-dashboard-token.tf b/configs/terraform/modules/security-dashboard-token/security-dashboard-token.tf index 04dc9a84f7cd..b86850441a31 100644 --- a/configs/terraform/modules/security-dashboard-token/security-dashboard-token.tf +++ b/configs/terraform/modules/security-dashboard-token/security-dashboard-token.tf @@ -31,7 +31,7 @@ resource "google_cloud_run_service" "security_dashboard_token" { template { spec { containers { - image = "europe-docker.pkg.dev/kyma-project/prod/dashboard-token-proxy:v20241022-db7fb7b8" #gitleaks:allow ignore gitleaks detection + image = "europe-docker.pkg.dev/kyma-project/prod/dashboard-token-proxy:v20241022-0ba5f3bb" #gitleaks:allow ignore gitleaks detection env { name = "CLIENT_SECRET" value_from { diff --git a/prow/cluster/components/automated-approver_external-plugin.yaml b/prow/cluster/components/automated-approver_external-plugin.yaml index bf1f36dd8ea8..05d49166b60d 100644 --- a/prow/cluster/components/automated-approver_external-plugin.yaml +++ b/prow/cluster/components/automated-approver_external-plugin.yaml @@ -16,7 +16,7 @@ spec: spec: containers: - name: automated-approver - image: europe-docker.pkg.dev/kyma-project/prod/automated-approver:v20241022-db7fb7b8 + image: europe-docker.pkg.dev/kyma-project/prod/automated-approver:v20241022-0ba5f3bb imagePullPolicy: Always args: - --dry-run=false diff --git a/prow/cluster/resources/external-secrets/external_secrets_checker_prow.yaml b/prow/cluster/resources/external-secrets/external_secrets_checker_prow.yaml index 68e8c0dcb5c8..645b8199ffcb 100644 --- a/prow/cluster/resources/external-secrets/external_secrets_checker_prow.yaml +++ b/prow/cluster/resources/external-secrets/external_secrets_checker_prow.yaml @@ -13,7 +13,7 @@ spec: spec: containers: - name: secret-checker-untrusted - image: europe-docker.pkg.dev/kyma-project/prod/externalsecretschecker:v20241022-db7fb7b8 #gitleaks:allow + image: europe-docker.pkg.dev/kyma-project/prod/externalsecretschecker:v20241022-0ba5f3bb #gitleaks:allow imagePullPolicy: IfNotPresent command: - /externalsecretschecker @@ -49,7 +49,7 @@ spec: spec: containers: - name: secret-checker-trusted - image: europe-docker.pkg.dev/kyma-project/prod/externalsecretschecker:v20241022-db7fb7b8 #gitleaks:allow + image: europe-docker.pkg.dev/kyma-project/prod/externalsecretschecker:v20241022-0ba5f3bb #gitleaks:allow imagePullPolicy: IfNotPresent command: - /externalsecretschecker @@ -85,7 +85,7 @@ spec: spec: containers: - name: secret-checker-prow - image: europe-docker.pkg.dev/kyma-project/prod/externalsecretschecker:v20241022-db7fb7b8 #gitleaks:allow + image: europe-docker.pkg.dev/kyma-project/prod/externalsecretschecker:v20241022-0ba5f3bb #gitleaks:allow imagePullPolicy: IfNotPresent command: - /externalsecretschecker diff --git a/prow/jobs/kyma-project/test-infra/image-syncer.yaml b/prow/jobs/kyma-project/test-infra/image-syncer.yaml index e6c1831f1404..49f5fcde4dad 100644 --- a/prow/jobs/kyma-project/test-infra/image-syncer.yaml +++ b/prow/jobs/kyma-project/test-infra/image-syncer.yaml @@ -22,7 +22,7 @@ presubmits: # runs on PRs - ^main$ spec: containers: - - image: "europe-docker.pkg.dev/kyma-project/prod/image-syncer:v20241022-db7fb7b8" + - image: "europe-docker.pkg.dev/kyma-project/prod/image-syncer:v20241022-0ba5f3bb" securityContext: privileged: false seccompProfile: @@ -61,7 +61,7 @@ postsubmits: # runs on main - ^main$ spec: containers: - - image: "europe-docker.pkg.dev/kyma-project/prod/image-syncer:v20241022-db7fb7b8" + - image: "europe-docker.pkg.dev/kyma-project/prod/image-syncer:v20241022-0ba5f3bb" securityContext: privileged: false seccompProfile: diff --git a/prow/jobs/kyma-project/test-infra/kyma-bot.yaml b/prow/jobs/kyma-project/test-infra/kyma-bot.yaml index ee1fb9bda62f..9d808cf2d8c5 100644 --- a/prow/jobs/kyma-project/test-infra/kyma-bot.yaml +++ b/prow/jobs/kyma-project/test-infra/kyma-bot.yaml @@ -22,7 +22,7 @@ presubmits: # runs on PRs spec: serviceAccountName: sa-prowjob-gcp-logging-client containers: - - image: "europe-docker.pkg.dev/kyma-project/prod/usersmapchecker:v20241022-db7fb7b8" + - image: "europe-docker.pkg.dev/kyma-project/prod/usersmapchecker:v20241022-0ba5f3bb" imagePullPolicy: Always securityContext: privileged: false diff --git a/prow/jobs/kyma-project/test-infra/periodics.yaml b/prow/jobs/kyma-project/test-infra/periodics.yaml index 04800f012998..4f86a4fd0a07 100644 --- a/prow/jobs/kyma-project/test-infra/periodics.yaml +++ b/prow/jobs/kyma-project/test-infra/periodics.yaml @@ -49,7 +49,7 @@ periodics: # runs on schedule cluster: trusted-workload spec: containers: - - image: "europe-docker.pkg.dev/kyma-project/prod/diskscollector:v20241022-db7fb7b8" + - image: "europe-docker.pkg.dev/kyma-project/prod/diskscollector:v20241022-0ba5f3bb" securityContext: privileged: false seccompProfile: @@ -81,7 +81,7 @@ periodics: # runs on schedule cluster: trusted-workload spec: containers: - - image: "europe-docker.pkg.dev/kyma-project/prod/ipcleaner:v20241022-db7fb7b8" + - image: "europe-docker.pkg.dev/kyma-project/prod/ipcleaner:v20241022-0ba5f3bb" securityContext: privileged: false seccompProfile: @@ -112,7 +112,7 @@ periodics: # runs on schedule cluster: trusted-workload spec: containers: - - image: "europe-docker.pkg.dev/kyma-project/prod/clusterscollector:v20241022-db7fb7b8" + - image: "europe-docker.pkg.dev/kyma-project/prod/clusterscollector:v20241022-0ba5f3bb" securityContext: privileged: false seccompProfile: @@ -143,7 +143,7 @@ periodics: # runs on schedule cluster: trusted-workload spec: containers: - - image: "europe-docker.pkg.dev/kyma-project/prod/vmscollector:v20241022-db7fb7b8" + - image: "europe-docker.pkg.dev/kyma-project/prod/vmscollector:v20241022-0ba5f3bb" securityContext: privileged: false seccompProfile: @@ -175,7 +175,7 @@ periodics: # runs on schedule cluster: trusted-workload spec: containers: - - image: "europe-docker.pkg.dev/kyma-project/prod/orphanremover:v20241022-db7fb7b8" + - image: "europe-docker.pkg.dev/kyma-project/prod/orphanremover:v20241022-0ba5f3bb" securityContext: privileged: false seccompProfile: @@ -207,7 +207,7 @@ periodics: # runs on schedule cluster: trusted-workload spec: containers: - - image: "europe-docker.pkg.dev/kyma-project/prod/dnscollector:v20241022-db7fb7b8" + - image: "europe-docker.pkg.dev/kyma-project/prod/dnscollector:v20241022-0ba5f3bb" securityContext: privileged: false seccompProfile: