Skip to content

Update images digests #569

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
cpanato merged 1 commit into from
Dec 18, 2025
Merged

Update images digests #569

cpanato merged 1 commit into from
Dec 18, 2025

Conversation

@octo-sts
Copy link
Contributor

@octo-sts octo-sts bot commented Dec 18, 2025

Update images digests

NONE

Changes

Details 
diff --git a/.github/workflows/.ci-build.yml b/.github/workflows/.ci-build.yml
index 47fccff..b10d3e4 100644
--- a/.github/workflows/.ci-build.yml
+++ b/.github/workflows/.ci-build.yml
@@ -74,7 +74,7 @@ jobs:
     timeout-minutes: 600 # default is 360
 
     container:
-      image: ghcr.io/wolfi-dev/sdk:latest@sha256:8e7855dbb9af021538403f4e9e317ef3ad125109d39934a0cc28663a27ace4d2
+      image: ghcr.io/wolfi-dev/sdk:latest@sha256:8a4391bc659e8ddfb0a9a84232f0e90362611998ab186f9d74c72933c3dbefce
       options: |
         --cap-add NET_ADMIN --cap-add SYS_ADMIN --device /dev/fuse --security-opt seccomp=unconfined --security-opt apparmor:unconfined
 
diff --git a/advisories-validate/action.yaml b/advisories-validate/action.yaml
index 66f41f0..b393ac8 100644
--- a/advisories-validate/action.yaml
+++ b/advisories-validate/action.yaml
@@ -37,7 +37,7 @@ inputs:
 
 runs:
   using: 'docker'
-  image: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8e7855dbb9af021538403f4e9e317ef3ad125109d39934a0cc28663a27ace4d2
+  image: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8a4391bc659e8ddfb0a9a84232f0e90362611998ab186f9d74c72933c3dbefce
   entrypoint: wolfictl
   args:
     - adv
diff --git a/build-and-publish-osv/action.yaml b/build-and-publish-osv/action.yaml
index 1e01c61..9585ff0 100644
--- a/build-and-publish-osv/action.yaml
+++ b/build-and-publish-osv/action.yaml
@@ -66,7 +66,7 @@ runs:
       shell: bash
 
     - name: Build the security database
-      uses: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8e7855dbb9af021538403f4e9e317ef3ad125109d39934a0cc28663a27ace4d2
+      uses: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8a4391bc659e8ddfb0a9a84232f0e90362611998ab186f9d74c72933c3dbefce
       with:
         entrypoint: wolfictl
         args: advisory osv -o osv ${{ inputs.wolfictl_args }}
diff --git a/build-and-publish-secdb/action.yaml b/build-and-publish-secdb/action.yaml
index 171e1b8..121666e 100644
--- a/build-and-publish-secdb/action.yaml
+++ b/build-and-publish-secdb/action.yaml
@@ -61,7 +61,7 @@ runs:
       shell: bash
 
     - name: Build the security database
-      uses: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8e7855dbb9af021538403f4e9e317ef3ad125109d39934a0cc28663a27ace4d2
+      uses: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8a4391bc659e8ddfb0a9a84232f0e90362611998ab186f9d74c72933c3dbefce
       with:
         entrypoint: wolfictl
         args: ${{ inputs.wolfictl_args }}
diff --git a/build-and-publish-yaml/action.yaml b/build-and-publish-yaml/action.yaml
index 0bb64fb..2dc6ca0 100644
--- a/build-and-publish-yaml/action.yaml
+++ b/build-and-publish-yaml/action.yaml
@@ -56,7 +56,7 @@ runs:
       shell: bash
 
     - name: Build the security database
-      uses: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8e7855dbb9af021538403f4e9e317ef3ad125109d39934a0cc28663a27ace4d2
+      uses: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8a4391bc659e8ddfb0a9a84232f0e90362611998ab186f9d74c72933c3dbefce
       with:
         entrypoint: wolfictl
         args: ${{ inputs.wolfictl_args }}
diff --git a/install-wolfictl/action.yaml b/install-wolfictl/action.yaml
index 5347264..b134b3f 100644
--- a/install-wolfictl/action.yaml
+++ b/install-wolfictl/action.yaml
@@ -10,6 +10,6 @@ runs:
       run: |
         # Copy wolfictl out of the wolfictl image and onto PATH
         TMP=$(mktemp -d)
-        docker run --rm -i -v $TMP:/out --entrypoint /bin/sh ghcr.io/wolfi-dev/sdk:latest@sha256:8e7855dbb9af021538403f4e9e317ef3ad125109d39934a0cc28663a27ace4d2 -c "cp /usr/bin/wolfictl /out"
+        docker run --rm -i -v $TMP:/out --entrypoint /bin/sh ghcr.io/wolfi-dev/sdk:latest@sha256:8a4391bc659e8ddfb0a9a84232f0e90362611998ab186f9d74c72933c3dbefce -c "cp /usr/bin/wolfictl /out"
         echo "$TMP" >> $GITHUB_PATH
       shell: bash
diff --git a/wolfictl-check-updates/action.yaml b/wolfictl-check-updates/action.yaml
index 51c0a44..9e4efbb 100644
--- a/wolfictl-check-updates/action.yaml
+++ b/wolfictl-check-updates/action.yaml
@@ -19,7 +19,7 @@ runs:
   using: "composite"
   steps:
     - name: wolfictl-check-updates
-      uses: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8e7855dbb9af021538403f4e9e317ef3ad125109d39934a0cc28663a27ace4d2
+      uses: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8a4391bc659e8ddfb0a9a84232f0e90362611998ab186f9d74c72933c3dbefce
       with:
         entrypoint: wolfictl
         args: check update ${{ inputs.changed_files }}
diff --git a/wolfictl-lint/action.yaml b/wolfictl-lint/action.yaml
index 5f3e1f0..8eb6bf2 100644
--- a/wolfictl-lint/action.yaml
+++ b/wolfictl-lint/action.yaml
@@ -26,7 +26,7 @@ runs:
     - name: Lint
       if: ${{ inputs.run_wolfictl_lint == 'true' }}
       id: lint
-      uses: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8e7855dbb9af021538403f4e9e317ef3ad125109d39934a0cc28663a27ace4d2
+      uses: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8a4391bc659e8ddfb0a9a84232f0e90362611998ab186f9d74c72933c3dbefce
       with:
         entrypoint: wolfictl
         args: --log-level info lint --skip-rule no-makefile-entry-for-package ${{ inputs.args }}
@@ -34,7 +34,7 @@ runs:
     - name: Enforce YAML formatting
       if: ${{ inputs.run_wolfictl_lint_yam == 'true' }}
       id: lint-yaml
-      uses: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8e7855dbb9af021538403f4e9e317ef3ad125109d39934a0cc28663a27ace4d2
+      uses: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8a4391bc659e8ddfb0a9a84232f0e90362611998ab186f9d74c72933c3dbefce
       with:
         entrypoint: wolfictl
         args: lint yam ${{ inputs.args }}
diff --git a/wolfictl-update-gh/action.yaml b/wolfictl-update-gh/action.yaml
index bf4d5e8..ed51b31 100644
--- a/wolfictl-update-gh/action.yaml
+++ b/wolfictl-update-gh/action.yaml
@@ -27,7 +27,7 @@ inputs:
 
 runs:
   using: 'docker'
-  image: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8e7855dbb9af021538403f4e9e317ef3ad125109d39934a0cc28663a27ace4d2
+  image: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8a4391bc659e8ddfb0a9a84232f0e90362611998ab186f9d74c72933c3dbefce
   entrypoint: wolfictl
   args:
     - update
diff --git a/wolfictl-update-rm/action.yaml b/wolfictl-update-rm/action.yaml
index f33cba3..66a99a0 100644
--- a/wolfictl-update-rm/action.yaml
+++ b/wolfictl-update-rm/action.yaml
@@ -32,7 +32,7 @@ inputs:
 
 runs:
   using: 'docker'
-  image: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8e7855dbb9af021538403f4e9e317ef3ad125109d39934a0cc28663a27ace4d2
+  image: docker://ghcr.io/wolfi-dev/sdk:latest@sha256:8a4391bc659e8ddfb0a9a84232f0e90362611998ab186f9d74c72933c3dbefce
   entrypoint: wolfictl
   args:
     - update

@cpanato cpanato merged commit c16cfc7 into main Dec 18, 2025
5 checks passed
@cpanato cpanato deleted the update-digests branch December 18, 2025 08:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cpanato cpanato cpanato approved these changes

Assignees

No one assigned

Labels

automated pr kind/cleanup release-note-none

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cpanato