This repository was archived by the owner on Jul 18, 2025. It is now read-only.
Pin Docker base image in Dockerfile#19
Open
atomist[bot] wants to merge 1 commit intomainfrom
Open
Conversation
atomist
Bot
added
auto-branch-delete:on-close
Author
More details are available in the vulnerability report |
atomist
Bot
force-pushed
the
atomist/pin-docker-base-image/dockerfile
branch
from
29ab9fb to
5aeb59e
Compare
atomist
Bot
force-pushed
the
atomist/pin-docker-base-image/dockerfile
branch
2 times, most recently
from
9dda4f8 to
ad6a952
Compare
atomist
Bot
force-pushed
the
atomist/pin-docker-base-image/dockerfile
branch
3 times, most recently
from
d9176e4 to
271c0b5
Compare
atomist
Bot
force-pushed
the
atomist/pin-docker-base-image/dockerfile
branch
from
271c0b5 to
7cb1bc6
Compare
atomist
Bot
force-pushed
the
atomist/pin-docker-base-image/dockerfile
branch
from
7cb1bc6 to
48a2356
Compare
atomist
Bot
force-pushed
the
atomist/pin-docker-base-image/dockerfile
branch
from
48a2356 to
865627a
Compare
atomist
Bot
force-pushed
the
atomist/pin-docker-base-image/dockerfile
branch
from
865627a to
b13ef08
Compare
atomist
Bot
force-pushed
the
atomist/pin-docker-base-image/dockerfile
branch
2 times, most recently
from
22ce2f9 to
0437b97
Compare
atomist
Bot
force-pushed
the
atomist/pin-docker-base-image/dockerfile
branch
2 times, most recently
from
74634fb to
44469bc
Compare
atomist
Bot
force-pushed
the
atomist/pin-docker-base-image/dockerfile
branch
2 times, most recently
from
c72814d to
ca92898
Compare
atomist
Bot
force-pushed
the
atomist/pin-docker-base-image/dockerfile
branch
from
ca92898 to
3725f21
Compare
atomist
Bot
force-pushed
the
atomist/pin-docker-base-image/dockerfile
branch
from
3725f21 to
536f9c8
Compare
node:14-buster-slim -> node:14-buster-slim@sha256:198142146b4c47193348f6415da769bdb5035c16fcab051c38c256a6b48f2e1c [atomist:generated] [atomist-skill:atomist/docker-base-image-policy] Signed-off-by: Atomist Bot <bot@atomist.com>
atomist
Bot
force-pushed
the
atomist/pin-docker-base-image/dockerfile
branch
from
536f9c8 to
4506147
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This pull request pins the Docker base image
node:14-buster-sliminDockerfileto the current digest.https://github.com/atomisthq/atomist-docker-tutorial/blob/4506147525352af62bc768e6b9c410c6edc4f9d3/Dockerfile#L1-L1
Digest
sha256:198142146b4c47193348f6415da769bdb5035c16fcab051c38c256a6b48f2e1creferences a multi-CPU architecture image manifest. This image supports the following architectures:sha256:21b6dc452bd2c066724bd5be0f7256ef81a068c47de1adead10a2f810557de02linux/amd64sha256:0fd009ded48d03615a354f35ef09559ec6afbd6a9f18074c43f10da7fde1091alinux/arm64/v8Pinning
FROMlines to digests makes your builds repeatable. Atomist will raise new pull requests whenever the tag moves, so that you know when the base image has been updated. You can follow a new tag at any time. Just replace the digest with the new tag you want to follow. Atomist, will switch to following this new tag.File changed:
Dockerfile