Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependencies and bump to Go 1.17 #41

Merged
merged 5 commits into from
Apr 5, 2022
Merged

Update dependencies and bump to Go 1.17 #41

merged 5 commits into from
Apr 5, 2022

Conversation

philipgough
Copy link
Collaborator

This changes is similar to what we did in thanos-recieve-controller #82 and essentially, trying to improve our situation in regards to production readiness.

I've update the Go version to 1.17 and upgrade our dependencies, some of which were deprecated or contained vulnerabilities.

The linter version has been updated because the older version was not executable on OS X.

To keep in sync with our other components and to reduce the attack surface of the image I've updated to using a scratch image. I had a quick look at the code and can't see any reason why this would be an issue but perhaps I missed something in that regards.

@philipgough philipgough force-pushed the update-deps branch 2 times, most recently from 079a383 to be4fe69 Compare April 4, 2022 08:53
squat
squat reviewed Apr 4, 2022
View reviewed changes
Dockerfile

RUN apk add ca-certificates --no-cache
RUN apk add ca-certificates --no-cache make && update-ca-certificates
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We need to copy the car certificates into the final container now

Copy link
Collaborator Author

@philipgough philipgough Apr 4, 2022
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good catch. Done

squat
squat reviewed Apr 4, 2022
View reviewed changes
Dockerfile

RUN make build

FROM scratch
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💕

@onprem onprem merged commit 6bd3314 into observatorium:master Apr 5, 2022
@philipgough philipgough deleted the update-deps branch April 5, 2022 10:28
@matej-g matej-g mentioned this pull request Jul 14, 2022
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@squat squat squat left review comments

@onprem onprem onprem approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@philipgough @squat @onprem