643557d534
build and push binaries images when a PR is merged or a tag pushed
...
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
2023-03-16 11:23:49 +01:00
200f47e5be
Add support for `additional_contexts` in `build` service config
...
Signed-off-by: Laura Brehm <laurabrehm@hey.com>
2023-03-15 14:00:51 +01:00
e0aaccf430
introduce dockerfile_inline
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-03-15 10:19:04 +01:00
754c06886f
one off container name use configured Separator for naming
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-03-15 09:47:43 +01:00
e492330dd5
collect built image IDs
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-03-15 09:47:32 +01:00
bbe1b77a67
progress writer uses dockercli.Err stream
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-03-15 09:47:13 +01:00
fc4d2dfdd8
Remove "-s" from LDFLAGS
...
While this stripping does decrease the binary size by some amount, it also removes the ability for `govulncheck` (https://go.dev/blog/vuln ) to scan the binary for actual uses of vulnerable functions, requiring the user to clone the code locally and hope they're testing against the same version of the stdlib, etc that the binary was built with. If we stop passing `-s`, then we can then run `govulncheck` on the binary directly (making it easier to flag both false positives in CVE scans _and_ actual issues worth looking into).
Here's an example of the output on a freshly built binary with this change:
```console
$ govulncheck ./bin/build/docker-compose
govulncheck is an experimental tool. Share feedback at https://go.dev/s/govulncheck-feedback .
Using govulncheck@v0.0.0 with
vulnerability data from https://vuln.go.dev (last modified 27 Feb 23 16:29 UTC).
Scanning your binary for known vulnerabilities...
No vulnerabilities found.
```
Compared to the 1.16.0 release binary:
```console
$ govulncheck ./docker-compose
go: downloading golang.org/x/vuln v0.0.0-20230224180816-edec1fb0a9c7
govulncheck is an experimental tool. Share feedback at https://go.dev/s/govulncheck-feedback .
Using govulncheck@v0.0.0 with
vulnerability data from https://vuln.go.dev (last modified 27 Feb 23 16:29 UTC).
Scanning your binary for known vulnerabilities...
govulncheck: vulncheck.Binary: reading go:func.*: no symbol "go:func.*"
```
It's not 100% apples-to-apples, but the size difference between these binaries is ~46MiB for the 1.16.0 release and ~52MiB for the binary I built from this commit.
Signed-off-by: Tianon Gravi <admwiggin@gmail.com>
2023-03-13 08:16:48 +00:00
85ddfde5d6
use go 1.20 -cover support
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-03-10 16:54:39 +00:00
6a0398d786
pad can be negative on small terminal
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-03-09 10:27:43 +00:00
4434cea535
add dry-run support for push command
...
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
2023-03-08 14:23:57 +00:00
62fbf20887
Merge pull request #10341 from glours/dry-run-pull-support
...
add dry-run support for pull command
2023-03-06 11:13:42 +01:00
3f7d3c2661
add dry-run support for pull command
...
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
2023-03-05 22:04:32 +01:00
9cc1613b55
adopt http://no-color.org/
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-03-03 11:15:40 +01:00
c4b47fe911
Merge pull request #10339 from glours/dry-run-restart-support
...
Dry run restart support
2023-03-02 10:25:51 +01:00
167c6a89b1
add dry-run support to restart command
...
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
2023-03-02 10:14:59 +01:00
a84345be8f
Merge pull request #10338 from glours/fix-restart-depends_on
...
restart only needed services by checking depends_on relations
2023-03-02 10:14:28 +01:00
3cfbac6624
restart only needed services by checking depends_on relations
...
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
2023-03-01 18:22:40 +01:00
a3bed265f2
update compose-go
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-03-01 17:14:53 +01:00
ae26426cc8
Report error if project name is empty after normalization
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-03-01 16:37:43 +01:00
4ea44797f5
only consider containers with config_hash labels (i.e, created by compose)
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-03-01 15:46:50 +01:00
a99a0b50ef
Merge pull request #10320 from milas/e2e-win-pause
...
test: tweak pause test to try and prevent failures in Windows CI
2023-03-01 10:36:11 +01:00
af414e9e2c
Merge pull request #10330 from docker/dependabot/go_modules/github.com/containerd/containerd-1.6.19
...
build(deps): bump github.com/containerd/containerd from 1.6.18 to 1.6.19
2023-03-01 10:34:25 +01:00
89633748d2
build(deps): bump github.com/containerd/containerd from 1.6.18 to 1.6.19
...
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd ) from 1.6.18 to 1.6.19.
- [Release notes](https://github.com/containerd/containerd/releases )
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md )
- [Commits](https://github.com/containerd/containerd/compare/v1.6.18...v1.6.19 )
---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-01 10:10:11 +01:00
f648c2949b
Merge pull request #10329 from docker/dependabot/go_modules/go.opentelemetry.io/otel-1.14.0
...
build(deps): bump go.opentelemetry.io/otel from 1.13.0 to 1.14.0
2023-02-28 12:50:06 +01:00
33aa6acefe
build(deps): bump go.opentelemetry.io/otel from 1.13.0 to 1.14.0
...
Bumps [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go ) from 1.13.0 to 1.14.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.13.0...v1.14.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-02-28 10:01:36 +00:00
e31b95c16d
test: tweak pause test to try and prevent failures in Windows CI
...
This test keeps failing with a timeout in Windows. I don't actually
think it should take that long to bring up an nginx container, so
I'm guessing that there's something else going on that's causing
trouble.
Increase the verbosity when running Compose commands: I think this
will generally make E2E test failures easier to diagnose by always
logging the full command that's going to be run and also capturing
stdout.
Add a health check and use `--wait` when launching the fixture for
the pause test. Combined with the verbosity increase, this should
make it easier to understand what's going on here.
Signed-off-by: Milas Bowman <milas.bowman@docker.com>
2023-02-27 14:20:20 -05:00
d4f156cc7d
Merge pull request #10311 from milas/fw-ephemeral
...
watch: ignore ephemeral files & minor output tweaks
2023-02-27 09:26:18 -05:00
c0daf8d3b5
Merge pull request #10316 from docker/dependabot/go_modules/github.com/stretchr/testify-1.8.2
...
build(deps): bump github.com/stretchr/testify from 1.8.1 to 1.8.2
2023-02-27 11:31:43 +01:00
7bb60d091c
build(deps): bump github.com/stretchr/testify from 1.8.1 to 1.8.2
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.8.1 to 1.8.2.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.8.1...v1.8.2 )
---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-02-27 10:04:52 +00:00
da1ca578b5
watch: ignore ephemeral files & minor output tweaks
...
Big change here is to import the ephemeral ignore set from Tilt.
The `.git` directory is also ignored for now: this restriction
should probably be lifted and made configurable in the future,
but it's not generally important to watch and triggers a LOT of
events (e.g. Git creates `index.lock` files that will appear and
disappear rapidly as terminals/IDEs/etc interact with Git, even
for read-only operations).
The Tilt-provided ephemeral file set has been slowly devised over
time based on temporary files that can cause trouble. We can also
look at a more robust/configurable solution here in the future,
but thse provide a reasonable out-of-the-box configuration for
the moment.
There's also some small tweaks to the output to add missing
newlines in a few edge cases and such.
Signed-off-by: Milas Bowman <milas.bowman@docker.com>
2023-02-24 14:34:51 -05:00
267cde91df
Merge pull request #10302 from glours/update-golang-x-net
...
bump golang/x/net to v0.7.0 (CVE-2022-41723)
2023-02-21 14:35:03 -05:00
18af72af87
bump golang/x/net to v0.7.0 (CVE-2022-41723)
...
Signed-off-by: Guillaume Lours <705411+glours@users.noreply.github.com>
2023-02-21 18:32:48 +01:00
e831ea826b
add support for `restart` for `depends_on`
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-02-18 12:55:29 +01:00
8d56db5e1d
Merge pull request #10287 from docker/dependabot/go_modules/github.com/containerd/containerd-1.6.18
...
build(deps): bump github.com/containerd/containerd from 1.6.17 to 1.6.18
2023-02-17 11:23:29 -05:00
1edc64ef93
build(deps): bump github.com/containerd/containerd from 1.6.17 to 1.6.18
...
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd ) from 1.6.17 to 1.6.18.
- [Release notes](https://github.com/containerd/containerd/releases )
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md )
- [Commits](https://github.com/containerd/containerd/compare/v1.6.17...v1.6.18 )
---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-02-17 15:13:16 +00:00
156e54a09e
Merge pull request #10291 from docker/dependabot/go_modules/github.com/docker/buildx-0.10.3
...
build(deps): bump github.com/docker/buildx from 0.10.2 to 0.10.3
2023-02-17 10:11:40 -05:00
762cf9d998
Merge pull request #10252 from glours/dry-run-exec-support
...
support dry-run for exec command
2023-02-17 10:05:31 -05:00
f3e543fd6a
apply config options for pseudo-subcommands
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-02-17 12:11:18 +01:00
9732608ec2
build(deps): bump github.com/docker/buildx from 0.10.2 to 0.10.3
...
Bumps [github.com/docker/buildx](https://github.com/docker/buildx ) from 0.10.2 to 0.10.3.
- [Release notes](https://github.com/docker/buildx/releases )
- [Commits](https://github.com/docker/buildx/compare/v0.10.2...v0.10.3 )
---
updated-dependencies:
- dependency-name: github.com/docker/buildx
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-02-17 10:00:59 +00:00
24ff098252
compact TUI to monitor layers download progress
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-02-16 17:55:59 +01:00
593c4263f3
ci: bump to Go 1.20.1 and latest deps
...
* Go v1.20.1
* golangci-lint v1.51.1
* compose-go v1.10.0
* buildx v0.10.2
* BuildKit v0.11.3
* moby v23.0.1
Signed-off-by: Milas Bowman <milas.bowman@docker.com>
2023-02-16 07:26:18 +01:00
313b82e94c
ignore services without a build section
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-02-14 15:18:44 +01:00
5e3e2171d4
sort service --hash output by service name
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-02-14 12:17:00 +01:00
9ac0392baf
introduce --timeout on `up`
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-02-14 12:16:41 +01:00
0612b34c68
introduce --no-deps on restart
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-02-14 11:30:15 +01:00
92e0cd4047
also restart dependent services after a service has been restarted
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-02-14 11:30:15 +01:00
1a410ffe30
Merge pull request #10279 from docker/dependabot/go_modules/go.uber.org/goleak-1.2.1
...
build(deps): bump go.uber.org/goleak from 1.1.12 to 1.2.1
2023-02-14 11:22:59 +01:00
282a29e67e
build(deps): bump go.uber.org/goleak from 1.1.12 to 1.2.1
...
Bumps [go.uber.org/goleak](https://github.com/uber-go/goleak ) from 1.1.12 to 1.2.1.
- [Release notes](https://github.com/uber-go/goleak/releases )
- [Changelog](https://github.com/uber-go/goleak/blob/master/CHANGELOG.md )
- [Commits](https://github.com/uber-go/goleak/compare/v1.1.12...v1.2.1 )
---
updated-dependencies:
- dependency-name: go.uber.org/goleak
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-02-14 10:01:06 +00:00
256ec49974
exclude unstable labels from config hash
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-02-13 17:02:28 +01:00
9765f171cd
store exec details to offer better dry-run status on ExecStart
...
Signed-off-by: Nicolas De Loof <nicolas.deloof@gmail.com>
2023-02-13 11:59:01 +01:00
Guillaume Lours
Laura Brehm
Nicolas De Loof
Tianon Gravi
dependabot[bot]
Laura Brehm
Milas Bowman