Skip to content

gitlab-runner-17.10/17.10.1 package update #48261

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
debasishbsws merged 2 commits into from
Mar 26, 2025
Merged

gitlab-runner-17.10/17.10.1 package update #48261

debasishbsws merged 2 commits into from
Mar 26, 2025

Conversation

@octo-sts
Copy link
Contributor

@octo-sts octo-sts bot commented Mar 26, 2025

@octo-sts octo-sts bot added request-version-update request for a newer version of a package automated pr labels Mar 26, 2025
@octo-sts
Copy link
Contributor Author

octo-sts bot commented Mar 26, 2025

⚠️ EXPERIMENTAL

Please use 👍 or 👎 on this comment to indicate if you agree or disagree with the recommendation.

To provide more detailed feedback please comment on the recommendation prefixed with /ai-verify:

e.g. /ai-verify partially helpful but I also added bash to the build environment

Gen AI suggestions to solve the build error:

Based on the error message, I'll provide a detailed analysis and solution:

• Detected Error:

[git checkout] FAIL Expected commit ef334dcc399bbda2930ef1f83197718e25053392 for v0.0.11, found 5753ece1553960dec3811db0f0ea71c3c2fcd41c

• Error Category: Version/Configuration

• Failure Point: Git checkout step for base-images repository

• Root Cause Analysis:
The expected commit hash in the melange YAML doesn't match the actual commit hash for the base-images repository at tag v0.0.11. The YAML expects ef334dcc399bbda2930ef1f83197718e25053392 but the actual commit is 5753ece1553960dec3811db0f0ea71c3c2fcd41c

• Suggested Fix:
Update the expected-commit hash in the git-checkout step for base-images:

  - uses: git-checkout
    with:
      repository: https://gitlab.com/gitlab-org/ci-cd/runner-tools/base-images
      tag: v${{vars.base-images-tag}}
      expected-commit: 5753ece1553960dec3811db0f0ea71c3c2fcd41c
      destination: ./base-images

• Explanation:
The error occurs because the melange build system verifies commit hashes for security. The current YAML is using the wrong commit hash for the base-images repository. The fix updates the expected-commit to match the actual commit hash for v0.0.11 tag, which is already correctly specified in the vars section at the top of the file.

• Additional Notes:

  • The vars section already has the correct commit hash (5753ece1553960dec3811db0f0ea71c3c2fcd41c)
  • The error appears to be a copy-paste issue where the gitlab-runner commit hash was used for the base-images repository
  • Always verify commit hashes when updating package versions to maintain supply chain security

• References:

@octo-sts octo-sts bot added the ai/skip-comment Stop AI from commenting on PR label Mar 26, 2025
@debasishbsws debasishbsws self-assigned this Mar 26, 2025
@debasishbsws debasishbsws enabled auto-merge (squash) March 26, 2025 13:35
@octo-sts octo-sts bot added the bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages. label Mar 26, 2025
@debasishbsws debasishbsws requested a review from a team March 26, 2025 13:44
@debasishbsws debasishbsws merged commit 698e1b6 into main Mar 26, 2025
21 checks passed
@debasishbsws debasishbsws deleted the wolfictl-db001833-6cd2-487c-92bf-24f0cc5dc5f0 branch March 26, 2025 16:14
@octo-sts octo-sts bot mentioned this pull request May 21, 2025
Merged
This was referenced Jun 11, 2025
Merged
Closed
This was referenced Jun 23, 2025
Closed
Merged
@octo-sts octo-sts bot mentioned this pull request Jul 17, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@powersj powersj powersj approved these changes

Assignees

@debasishbsws debasishbsws

Labels

ai/skip-comment Stop AI from commenting on PR automated pr bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages. manual/review-needed request-version-update request for a newer version of a package

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@powersj @debasishbsws @wolfi-bot