Implement 'latest' tag for docker and apptainer container images#11
Merged
tomlunderwood merged 4 commits intomainfrom Mar 28, 2025
Merged
Implement 'latest' tag for docker and apptainer container images#11tomlunderwood merged 4 commits intomainfrom
tomlunderwood merged 4 commits intomainfrom
Conversation
…ontainer images in CI/CD pipeline
…line made recently for testing purposes
… creation of 'latest' tag
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
In this PR I modify the CI/CD pipeline so that whenever a container image is published in the container registry for this repo, and the tag for the container image is of the form
v*.*.*(where*are non-negative integers), the container image is additionally given the 'latest' tag. This is the case for both the docker and the apptainer images generated by the CI/CD pipeline.Moreover, in this PR I have also activated security scans via the
anchore-scanjob in the CI/CD pipeline. This had been deactivated while the repository was private. However, now that the repo has recently been made public, the scans can be used. Note though that they will only run in themainbranch, so no scans will run until this PR is merged.Evidence that the pipeline can generate a 'latest' tag successfully can be found at:
Note that in both cases the 'latest' tag can be seen to be in operation. However, in this case to generate the 'latest' tag I - for testing purposes - disabled the check that the tag has the form
v*.*.*. (The job which generated the 'latest' tag here is https://github.com/PSDI-UK/data-transfer-container/actions/runs/14129397837/job/39585746845). When the PR is merged the pipeline will have the desired behaviour: 'latest' tags will only be generated for container images which have tags of the formv*.*.*.This PR completes the part of https://stfc.atlassian.net/browse/PSDI-477 pertaining to the
data-transfer-containerrepo.