Unfortunately, the current renovate-config does not support the sourcing of digests for
kubectl. To bypass this limitation while keeping the auto bumps working, the digest will
be sourced on demand based on the dl.k8s.io endpoint.
Signed-off-by: Paulo Gomes <paulo.gomes@suse.com>
Uses the latest changes from https://github.com/rancher/renovate-config/pull/243 to enable
auto bump for Kind, Sonobuoy and kube-bench. Kubectl will be handled as a separated PR, as it cannot
be sourced from github releases.
Signed-off-by: Paulo Gomes <paulo.gomes@suse.com>
The version logic is contained within hack/make/build.mk and is a pre-req for some of the Makefile targets.
The Makefile is used to kick off the building of the container image, and inside that
process make build is executed to compile security-scan. This change stops the version
logic from executing a second time by accepting a VERSION var to be set, therefore removing
the need for accessing the .git dir.
Signed-off-by: Paulo Gomes <paulo.gomes@suse.com>
Instead of changing the default docker buildx machine, create it and refer
to it by its name. This ensures building this project does not disrupt
other workflows from a given contributor.
Signed-off-by: Paulo Gomes <paulo.gomes@suse.com>
The multi-stage dockerfile is now used to build the project binary, instead
of copying it from the host. This enforces that the binary is always rebuilt
whenever there is a change that invalidates the previous version - from a
container image perspective.
The makefile was restructured so that only the most important and relevant code
is present. In order to enable code reuse, build related logic was extracted to
hack/make/build.mk. All code related to installing tools is now placed in
hack/make/tools.mk.
Signed-off-by: Paulo Gomes <paulo.gomes@suse.com>
renovate-rancher[bot]