upstream/k3s
1
0
Fork 0
mirror of https://github.com/k3s-io/k3s.git synced 2026-06-09 08:55:19 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

Fix trivy updatecli config

Browse source 
Signed-off-by: Manuel Buil <mbuil@suse.com>
This commit is contained in:
Manuel Buil 2026-03-16 16:59:02 +01:00
parent 2f54f97ab4
commit c08951e848
1 changed files with 11 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
updatecli/updatecli.d/trivy.yaml
View file

@ -36,7 +36,7 @@ sources:
token: "{{ requiredEnv .github.token }}"
versionfilter:
kind: "regex"
pattern: "^v\\d+\\.\\d+$" # Matches "vMajor.Minor" only, skip patch
pattern: "^v\\d+\\.\\d+\\.\\d+$" # Matches "vMajor.Minor.Patch"
transformers:
- trimprefix: "v"
@ -48,7 +48,15 @@ conditions:
disablesourceinput: true
spec:
file: "Dockerfile.dapper"
matchpattern: 'TRIVY_VERSION="\d+\.\d+.\d+"'
matchpattern: 'TRIVY_VERSION="\d+\.\d+\.\d+"'
trivy-minor-changed:
name: "Only update when Trivy major.minor changed"
kind: "shell"
sourceid: "trivy-release"
transformers:
- find: '\d+\.\d+'
spec:
command: 'current=$(sed -n -E ''s/^ENV TRIVY_VERSION="([0-9]+\.[0-9]+)\.[0-9]+"$/\1/p'' Dockerfile.dapper); test "$current" !='
targets:
trivy-version:
@ -58,6 +66,6 @@ targets:
disablesourceinput: true
spec:
file: "Dockerfile.dapper"
matchpattern: 'TRIVY_VERSION="\d+\.\d+.\d+"'
matchpattern: 'TRIVY_VERSION="\d+\.\d+\.\d+"'
replacepattern: 'TRIVY_VERSION="{{ source `trivy-release` }}"'