From f05d33a0fbfde7e9284b7daab10625c243ae0d47 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 30 Oct 2025 13:02:10 +0000 Subject: [PATCH 001/100] Update quay.io/fedora/fedora-bootc Docker tag to v43 Signed-off-by: Platform Engineering Bot --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 29239ef..bf412c4 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:09fc42f1db6487dd47b773a852672d3a6977753ad8e8fb02a2b490af8cb6bf2d AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:abed0a54d97da456a3d62ee7399595b6016bbeebf9fe78fba851a4586822b313 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 151b74bb0a36068afc3e751ca25e6381beb624d0 Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Thu, 30 Oct 2025 17:22:59 -0400 Subject: [PATCH 002/100] Updates for Fedora 43 build. --- .../workflows/{build.yaml => main-build.yaml} | 6 +-- .github/workflows/pr-build.yaml | 39 +++++++++++++++++++ Containerfile | 3 +- Makefile | 7 ++-- bootc-image-builder | 2 +- 5 files changed, 48 insertions(+), 9 deletions(-) rename .github/workflows/{build.yaml => main-build.yaml} (88%) create mode 100644 .github/workflows/pr-build.yaml diff --git a/.github/workflows/build.yaml b/.github/workflows/main-build.yaml similarity index 88% rename from .github/workflows/build.yaml rename to .github/workflows/main-build.yaml index da522d0..493f17f 100644 --- a/.github/workflows/build.yaml +++ b/.github/workflows/main-build.yaml @@ -1,7 +1,7 @@ permissions: contents: read packages: write -name: Build F42 bootc image +name: Main build and publish image on: workflow_dispatch: push: @@ -16,7 +16,7 @@ concurrency: jobs: build: - name: Build Fedora bootc image + name: Main build and publish image runs-on: ubuntu-latest env: IMAGE_NAME: framework-fedora-bootc @@ -35,7 +35,7 @@ jobs: uses: redhat-actions/buildah-build@v2 with: image: ${{ env.IMAGE_NAME }} - tags: latest 42 ${{ github.sha }} + tags: latest 43 ${{ github.sha }} layers: True containerfiles: | ./Containerfile diff --git a/.github/workflows/pr-build.yaml b/.github/workflows/pr-build.yaml new file mode 100644 index 0000000..7bbcc45 --- /dev/null +++ b/.github/workflows/pr-build.yaml @@ -0,0 +1,39 @@ +permissions: + contents: read + packages: write +name: PR build test +on: + workflow_dispatch: + pull_request: + paths: + - Containerfile + +concurrency: + group: ${{ github.workflow }}-${{ github.ref }} + cancel-in-progress: true + +jobs: + build: + name: PR build test + runs-on: ubuntu-latest + env: + IMAGE_NAME: framework-fedora-bootc + REGISTRY: ghcr.io/compphy + + steps: + - name: Clone the repository + uses: actions/checkout@v5 + + # Based on https://github.com/orgs/community/discussions/25678 + - name: Delete huge unnecessary tools folder + run: rm -rf /opt/hostedtoolcache + + - name: Use buildah build to create the image + id: build-image + uses: redhat-actions/buildah-build@v2 + with: + image: ${{ env.IMAGE_NAME }} + tags: latest 43 ${{ github.sha }} + layers: True + containerfiles: | + ./Containerfile diff --git a/Containerfile b/Containerfile index bf412c4..c90f186 100644 --- a/Containerfile +++ b/Containerfile @@ -1,6 +1,6 @@ FROM quay.io/fedora/fedora-bootc:43@sha256:abed0a54d97da456a3d62ee7399595b6016bbeebf9fe78fba851a4586822b313 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 -RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 +RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all RUN systemctl disable abrtd atd mcelog RUN systemctl set-default graphical.target @@ -15,4 +15,3 @@ RUN dnf install -y https://mirrors.rpmfusion.org/free/fedora/rpmfusion-free-rele RUN dnf config-manager setopt fedora-cisco-openh264.enabled=1 RUN dnf install -y steam && dnf clean all RUN bootc container lint - diff --git a/Makefile b/Makefile index 81a728f..6950abf 100644 --- a/Makefile +++ b/Makefile @@ -1,5 +1,5 @@ -OCI_IMAGE ?= ghcr.io/compphy/framework-fedora-bootc:latest -DISK_TYPE ?= anaconda-iso +OCI_IMAGE ?= ghcr.io/compphy/framework-fedora-bootc:latest +DISK_TYPE ?= raw ROOTFS ?= ext4 ARCH ?= amd64 # Use upsteam build: @@ -10,6 +10,7 @@ BIB_IMAGE ?= localhost/bootc-image-builder:latest # See https://github.com/osbuild/bootc-image-builder .PHONY: disk-image disk-image: + podman build -t framework-fedora-bootc $(CURDIR) podman build -t bootc-image-builder $(CURDIR)/bootc-image-builder mkdir -p ./output mkdir -p /var/lib/containers/storage @@ -28,4 +29,4 @@ disk-image: --type $(DISK_TYPE) \ --rootfs $(ROOTFS) \ --use-librepo \ - $(OCI_IMAGE) \ No newline at end of file + localhost/framework-fedora-bootc:latest \ No newline at end of file diff --git a/bootc-image-builder b/bootc-image-builder index 8c0ddd3..6a6cd92 160000 --- a/bootc-image-builder +++ b/bootc-image-builder @@ -1 +1 @@ -Subproject commit 8c0ddd38e54df8d37ec5c4033cccf90b60eed970 +Subproject commit 6a6cd928962cce3fb85bb694e3b790c64b7576b9 From f4f1a6950cb3c850dab03a657c4dea26541e035d Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 30 Oct 2025 13:02:10 +0000 Subject: [PATCH 003/100] Update quay.io/fedora/fedora-bootc Docker tag to v43 Signed-off-by: Platform Engineering Bot --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 29239ef..bf412c4 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:09fc42f1db6487dd47b773a852672d3a6977753ad8e8fb02a2b490af8cb6bf2d AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:abed0a54d97da456a3d62ee7399595b6016bbeebf9fe78fba851a4586822b313 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 3efbe2081770af0d6319670f95ec1d2dfee79f7c Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Thu, 30 Oct 2025 17:22:59 -0400 Subject: [PATCH 004/100] Updates for Fedora 43 build. --- .github/workflows/main-build.yaml | 3 +-- .github/workflows/pr-build.yaml | 2 +- Containerfile | 3 +-- Makefile | 7 ++++--- bootc-image-builder | 2 +- 5 files changed, 8 insertions(+), 9 deletions(-) diff --git a/.github/workflows/main-build.yaml b/.github/workflows/main-build.yaml index 05e2e34..58d474c 100644 --- a/.github/workflows/main-build.yaml +++ b/.github/workflows/main-build.yaml @@ -59,8 +59,7 @@ jobs: uses: redhat-actions/buildah-build@v2 with: image: ${{ env.IMAGE_NAME }} - # On main tag both 'latest' and '42'; on release-42 tag '42'. - tags: ${{ github.ref == 'refs/heads/main' && 'latest 42 ' || (github.ref == 'refs/heads/release-42' && '42 ' || '') }}${{ github.sha }} + tags: ${{ github.ref == 'refs/heads/release-42' && '42 ' || 'latest 43 ' }}${{ github.sha }} layers: True containerfiles: | ./Containerfile diff --git a/.github/workflows/pr-build.yaml b/.github/workflows/pr-build.yaml index b520f68..0e477a4 100644 --- a/.github/workflows/pr-build.yaml +++ b/.github/workflows/pr-build.yaml @@ -36,4 +36,4 @@ jobs: image: ${{ env.IMAGE_NAME }} layers: True containerfiles: | - ./Containerfile \ No newline at end of file + ./Containerfile diff --git a/Containerfile b/Containerfile index bf412c4..c90f186 100644 --- a/Containerfile +++ b/Containerfile @@ -1,6 +1,6 @@ FROM quay.io/fedora/fedora-bootc:43@sha256:abed0a54d97da456a3d62ee7399595b6016bbeebf9fe78fba851a4586822b313 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 -RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 +RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all RUN systemctl disable abrtd atd mcelog RUN systemctl set-default graphical.target @@ -15,4 +15,3 @@ RUN dnf install -y https://mirrors.rpmfusion.org/free/fedora/rpmfusion-free-rele RUN dnf config-manager setopt fedora-cisco-openh264.enabled=1 RUN dnf install -y steam && dnf clean all RUN bootc container lint - diff --git a/Makefile b/Makefile index 81a728f..6950abf 100644 --- a/Makefile +++ b/Makefile @@ -1,5 +1,5 @@ -OCI_IMAGE ?= ghcr.io/compphy/framework-fedora-bootc:latest -DISK_TYPE ?= anaconda-iso +OCI_IMAGE ?= ghcr.io/compphy/framework-fedora-bootc:latest +DISK_TYPE ?= raw ROOTFS ?= ext4 ARCH ?= amd64 # Use upsteam build: @@ -10,6 +10,7 @@ BIB_IMAGE ?= localhost/bootc-image-builder:latest # See https://github.com/osbuild/bootc-image-builder .PHONY: disk-image disk-image: + podman build -t framework-fedora-bootc $(CURDIR) podman build -t bootc-image-builder $(CURDIR)/bootc-image-builder mkdir -p ./output mkdir -p /var/lib/containers/storage @@ -28,4 +29,4 @@ disk-image: --type $(DISK_TYPE) \ --rootfs $(ROOTFS) \ --use-librepo \ - $(OCI_IMAGE) \ No newline at end of file + localhost/framework-fedora-bootc:latest \ No newline at end of file diff --git a/bootc-image-builder b/bootc-image-builder index 8c0ddd3..6a6cd92 160000 --- a/bootc-image-builder +++ b/bootc-image-builder @@ -1 +1 @@ -Subproject commit 8c0ddd38e54df8d37ec5c4033cccf90b60eed970 +Subproject commit 6a6cd928962cce3fb85bb694e3b790c64b7576b9 From 4921bbd7f14b06d057d131d0b25adffb94cb2b89 Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Tue, 4 Nov 2025 15:10:09 -0500 Subject: [PATCH 005/100] Update SHA digest. --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index c90f186..2b1e9a8 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:abed0a54d97da456a3d62ee7399595b6016bbeebf9fe78fba851a4586822b313 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:b193a5166e08d74047c336b4161f6f6ecbca79ac7a238daeaad21a0d3a377a10 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From f6cffb298712084bdc70ec6b4d5fa5a5875e238a Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 30 Oct 2025 13:02:10 +0000 Subject: [PATCH 006/100] Update quay.io/fedora/fedora-bootc Docker tag to v43 Signed-off-by: Platform Engineering Bot --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 29239ef..bf412c4 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:09fc42f1db6487dd47b773a852672d3a6977753ad8e8fb02a2b490af8cb6bf2d AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:abed0a54d97da456a3d62ee7399595b6016bbeebf9fe78fba851a4586822b313 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From f4fb6784e9cd18cc83ad303273fbada2d11d446f Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Thu, 30 Oct 2025 17:22:59 -0400 Subject: [PATCH 007/100] Updates for Fedora 43 build. --- .github/workflows/main-build.yaml | 3 +-- .github/workflows/pr-build.yaml | 2 +- Containerfile | 3 +-- Makefile | 7 ++++--- 4 files changed, 7 insertions(+), 8 deletions(-) diff --git a/.github/workflows/main-build.yaml b/.github/workflows/main-build.yaml index 05e2e34..58d474c 100644 --- a/.github/workflows/main-build.yaml +++ b/.github/workflows/main-build.yaml @@ -59,8 +59,7 @@ jobs: uses: redhat-actions/buildah-build@v2 with: image: ${{ env.IMAGE_NAME }} - # On main tag both 'latest' and '42'; on release-42 tag '42'. - tags: ${{ github.ref == 'refs/heads/main' && 'latest 42 ' || (github.ref == 'refs/heads/release-42' && '42 ' || '') }}${{ github.sha }} + tags: ${{ github.ref == 'refs/heads/release-42' && '42 ' || 'latest 43 ' }}${{ github.sha }} layers: True containerfiles: | ./Containerfile diff --git a/.github/workflows/pr-build.yaml b/.github/workflows/pr-build.yaml index b520f68..0e477a4 100644 --- a/.github/workflows/pr-build.yaml +++ b/.github/workflows/pr-build.yaml @@ -36,4 +36,4 @@ jobs: image: ${{ env.IMAGE_NAME }} layers: True containerfiles: | - ./Containerfile \ No newline at end of file + ./Containerfile diff --git a/Containerfile b/Containerfile index bf412c4..c90f186 100644 --- a/Containerfile +++ b/Containerfile @@ -1,6 +1,6 @@ FROM quay.io/fedora/fedora-bootc:43@sha256:abed0a54d97da456a3d62ee7399595b6016bbeebf9fe78fba851a4586822b313 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 -RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 +RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all RUN systemctl disable abrtd atd mcelog RUN systemctl set-default graphical.target @@ -15,4 +15,3 @@ RUN dnf install -y https://mirrors.rpmfusion.org/free/fedora/rpmfusion-free-rele RUN dnf config-manager setopt fedora-cisco-openh264.enabled=1 RUN dnf install -y steam && dnf clean all RUN bootc container lint - diff --git a/Makefile b/Makefile index 81a728f..6950abf 100644 --- a/Makefile +++ b/Makefile @@ -1,5 +1,5 @@ -OCI_IMAGE ?= ghcr.io/compphy/framework-fedora-bootc:latest -DISK_TYPE ?= anaconda-iso +OCI_IMAGE ?= ghcr.io/compphy/framework-fedora-bootc:latest +DISK_TYPE ?= raw ROOTFS ?= ext4 ARCH ?= amd64 # Use upsteam build: @@ -10,6 +10,7 @@ BIB_IMAGE ?= localhost/bootc-image-builder:latest # See https://github.com/osbuild/bootc-image-builder .PHONY: disk-image disk-image: + podman build -t framework-fedora-bootc $(CURDIR) podman build -t bootc-image-builder $(CURDIR)/bootc-image-builder mkdir -p ./output mkdir -p /var/lib/containers/storage @@ -28,4 +29,4 @@ disk-image: --type $(DISK_TYPE) \ --rootfs $(ROOTFS) \ --use-librepo \ - $(OCI_IMAGE) \ No newline at end of file + localhost/framework-fedora-bootc:latest \ No newline at end of file From c3178670bbd6ea04292e2305979527622e3d0d5e Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Thu, 30 Oct 2025 17:22:59 -0400 Subject: [PATCH 008/100] Updates for Fedora 43 build. --- bootc-image-builder | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/bootc-image-builder b/bootc-image-builder index a8e8ad7..6a6cd92 160000 --- a/bootc-image-builder +++ b/bootc-image-builder @@ -1 +1 @@ -Subproject commit a8e8ad78da94a1e0ba52a95893cc7e34157f8842 +Subproject commit 6a6cd928962cce3fb85bb694e3b790c64b7576b9 From 4badd8396cbb15ef400c0312f64a7c3c9a976e8d Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Tue, 4 Nov 2025 15:10:09 -0500 Subject: [PATCH 009/100] Update SHA digest. --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index c90f186..2b1e9a8 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:abed0a54d97da456a3d62ee7399595b6016bbeebf9fe78fba851a4586822b313 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:b193a5166e08d74047c336b4161f6f6ecbca79ac7a238daeaad21a0d3a377a10 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 161e9086b50e8dba945b82a6145598c5a4daccbf Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 28 Nov 2025 13:55:29 +0000 Subject: [PATCH 010/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 7415d71 (#125) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 89bb138..c2b7e03 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:2c48b779ef9e6c9a073f741167d56d9475c7fccf3d834d5c650f78eeacb330ae AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:7415d7126e98dd19bd6d11d7e40535eebc027cc9e57e000b30d0bc6dc87878d3 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From ec09fab42d06ea6379ae4c3d280267329ab824e2 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sun, 30 Nov 2025 12:31:36 +0000 Subject: [PATCH 011/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 9aedd81 (#127) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index c2b7e03..79d04b4 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:7415d7126e98dd19bd6d11d7e40535eebc027cc9e57e000b30d0bc6dc87878d3 AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:9aedd8148c5552d691789e8e62738724165bf416e54569b444c4980e3c751204 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From aabe7be481d377b10d7606d8c7c8619e2c2965eb Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 3 Dec 2025 08:27:31 +0000 Subject: [PATCH 012/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 442896b (#129) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 79d04b4..e86733b 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:9aedd8148c5552d691789e8e62738724165bf416e54569b444c4980e3c751204 AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:442896b5e50baef5f8181202b4d939efdd963add307227a6dcb396a5a057f217 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 1b4cb1a137b73af5f0cce2ae6f87cb2f7ac098c9 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 4 Dec 2025 08:33:48 +0000 Subject: [PATCH 013/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to dfcfb81 (#131) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index e86733b..63ea6e0 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:442896b5e50baef5f8181202b4d939efdd963add307227a6dcb396a5a057f217 AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:dfcfb8115cc82595479d2ea5c6f7fa54ccfafbf360cc7bfea7592d5cba0bbf82 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 79aaf5e90dbc071a2c1271baed97fd7ac6085206 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 5 Dec 2025 12:39:19 +0000 Subject: [PATCH 014/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 9235655 (#133) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 63ea6e0..2b945d3 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:dfcfb8115cc82595479d2ea5c6f7fa54ccfafbf360cc7bfea7592d5cba0bbf82 AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:923565575f32adf0746e4757e84c3072b890351bb931055972294ed06be582d2 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 0d7e289739771374aee5f9321afdfbe14ac82c1e Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sun, 7 Dec 2025 09:11:38 +0000 Subject: [PATCH 015/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 2e0e8b9 (#135) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 2b945d3..fbcdbd9 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:923565575f32adf0746e4757e84c3072b890351bb931055972294ed06be582d2 AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:2e0e8b981459034e682caa5fec07200bb108cd7baef282d17fd5d8891714a803 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From a5521c1f9f7091b9a29fec4cac07b94241ec9d56 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 10 Dec 2025 08:58:12 +0000 Subject: [PATCH 016/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 0ae27da (#137) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index fbcdbd9..10ca27c 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:2e0e8b981459034e682caa5fec07200bb108cd7baef282d17fd5d8891714a803 AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:0ae27dac39cce4736f83a68f03eadcb429250a781ab0aeaff7d9212cc7a84a5b AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From e58e28f4a752dc3a8037f4136cdba1dec9b6d6e2 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 11 Dec 2025 13:15:01 +0000 Subject: [PATCH 017/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 4f8c23d (#139) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 10ca27c..334abd0 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:0ae27dac39cce4736f83a68f03eadcb429250a781ab0aeaff7d9212cc7a84a5b AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:4f8c23d280f909bde2967564d50adb675edea28b606e82b9a51f0d49c6446359 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 301ada6a1f6468439c49eb0ce3472ee590bfa6ec Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sun, 14 Dec 2025 08:53:57 +0000 Subject: [PATCH 018/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to dc56fb6 (#141) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 334abd0..e75e8b7 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:4f8c23d280f909bde2967564d50adb675edea28b606e82b9a51f0d49c6446359 AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:dc56fb629cb8086dcb55f08c075d6f914fce6c1bb9ad08f8d11d4911a6afd2a5 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From bbde8969772c7f041ff795cd7fdb76f2790f1267 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 15 Dec 2025 08:49:09 +0000 Subject: [PATCH 019/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to f3383c9 (#143) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index e75e8b7..4b91119 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:dc56fb629cb8086dcb55f08c075d6f914fce6c1bb9ad08f8d11d4911a6afd2a5 AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:f3383c960c767452f652cb1641d58a43647c4faa225c55bdd7f954c8d4bbebd3 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From a1caad260ba32709e8d2b40ff52ffca3e744ca60 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 15 Dec 2025 21:42:01 +0000 Subject: [PATCH 020/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to a6e1820 (#145) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 4b91119..3c2f957 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:f3383c960c767452f652cb1641d58a43647c4faa225c55bdd7f954c8d4bbebd3 AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:a6e1820cf4f8c814d9457d5d0fde7313dd84b9ee31ec10671a3d04db67188fba AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 81d478f58b296666e35f93e576212e68993a1ba7 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 17 Dec 2025 01:07:01 +0000 Subject: [PATCH 021/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 35857b8 (#147) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 3c2f957..8d02497 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:a6e1820cf4f8c814d9457d5d0fde7313dd84b9ee31ec10671a3d04db67188fba AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:35857b8f703d63873b2e08d84bf5919acf964c90f42e48e9273f1f794f237666 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 790ee2b618b28cd79afd9f7cca635cf51548f3f0 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 17 Dec 2025 17:53:45 +0000 Subject: [PATCH 022/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 0adc154 (#149) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 8d02497..2a7dcb8 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:35857b8f703d63873b2e08d84bf5919acf964c90f42e48e9273f1f794f237666 AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:0adc154a44ca1ec65aa810aced37ee091b1fa3bb8e96fe67fba9568b0299c03c AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 5fd686d92c87c56b7c684c1b7e72c8361c28ca09 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 19 Dec 2025 15:52:07 +0000 Subject: [PATCH 023/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 3fa8d5e (#151) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 2a7dcb8..4d5f4fe 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:0adc154a44ca1ec65aa810aced37ee091b1fa3bb8e96fe67fba9568b0299c03c AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:3fa8d5eeed7d892bfb55c8bea3c99a4ff22f55ddc2cf0831ed04d040b94e5469 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 1f112d50567db0e22b7c0602fffa165dc66ddeb4 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sun, 21 Dec 2025 17:46:47 +0000 Subject: [PATCH 024/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 492ea30 (#153) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 4d5f4fe..b9fd234 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:3fa8d5eeed7d892bfb55c8bea3c99a4ff22f55ddc2cf0831ed04d040b94e5469 AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:492ea30acac80597303baba084a4947283b596cba2fd975ed5b88173278e6036 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 3cee08a8f7569a72e78d3d4c9fe1f861fd31f792 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 23 Dec 2025 16:34:50 +0000 Subject: [PATCH 025/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 407cef5 (#155) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index b9fd234..447b391 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:492ea30acac80597303baba084a4947283b596cba2fd975ed5b88173278e6036 AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:407cef56d0e662e71a178ace350d32948387eea739df156b833b4043bc6e6381 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 5ceb2a71a95869d6f5181594fd08e5808b331c45 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 25 Dec 2025 13:01:49 +0000 Subject: [PATCH 026/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 8ae1e5f (#157) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 447b391..2b46869 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:407cef56d0e662e71a178ace350d32948387eea739df156b833b4043bc6e6381 AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:8ae1e5f2ad56e54619f8eb4af1c5a4369a4af750f0ce04bebbcfcfad43e60a2c AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From a8c8c14da1b95b05eafdc4867761845454d65e42 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 27 Dec 2025 13:01:20 +0000 Subject: [PATCH 027/100] chore(deps): update quay.io/fedora/fedora-bootc:42 docker digest to 5e140da (#159) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 2b46869..894db9d 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:42@sha256:8ae1e5f2ad56e54619f8eb4af1c5a4369a4af750f0ce04bebbcfcfad43e60a2c AS builder +FROM quay.io/fedora/fedora-bootc:42@sha256:5e140da7a2a2f58f41cfb28786a6c624a3acabb796dadd03f82ceba571245029 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-77e737a366 RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 5419916feec8aa46fc84e3414e1f79aaa8ecabc8 Mon Sep 17 00:00:00 2001 From: Kelly Shutt <10223024+CompPhy@users.noreply.github.com> Date: Sat, 27 Dec 2025 10:22:21 -0500 Subject: [PATCH 028/100] Update digest to latest. --- Containerfile | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 2b1e9a8..7bbb708 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:b193a5166e08d74047c336b4161f6f6ecbca79ac7a238daeaad21a0d3a377a10 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:2ea291797d86cf7c8c3f0e62a7993e247acc1dbd7ecc776608010c2684314618 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all @@ -15,3 +15,4 @@ RUN dnf install -y https://mirrors.rpmfusion.org/free/fedora/rpmfusion-free-rele RUN dnf config-manager setopt fedora-cisco-openh264.enabled=1 RUN dnf install -y steam && dnf clean all RUN bootc container lint + From f63ec57d48089871fad4428fb583a3e0d334dfee Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 27 Dec 2025 16:05:25 +0000 Subject: [PATCH 029/100] chore(deps): update bootc-image-builder digest to dc8bd6a Signed-off-by: Platform Engineering Bot --- bootc-image-builder | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/bootc-image-builder b/bootc-image-builder index 6a6cd92..dc8bd6a 160000 --- a/bootc-image-builder +++ b/bootc-image-builder @@ -1 +1 @@ -Subproject commit 6a6cd928962cce3fb85bb694e3b790c64b7576b9 +Subproject commit dc8bd6ad0b8436b40627a44a4547b792cb7b768f From 980aa8e9326284e91febdce107a389ecc31cc0eb Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 29 Dec 2025 10:30:08 +0000 Subject: [PATCH 030/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 44b545c (#163) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 7bbb708..875a56d 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:2ea291797d86cf7c8c3f0e62a7993e247acc1dbd7ecc776608010c2684314618 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:44b545cdee8fc84d7d946d183aee5a3ef940de9ff5ead0364947346451a0f0ea AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From bf8512ea490f1f6f212931555db229802bb8cb28 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 30 Dec 2025 17:35:41 +0000 Subject: [PATCH 031/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 46f6253 (#165) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 875a56d..7231960 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:44b545cdee8fc84d7d946d183aee5a3ef940de9ff5ead0364947346451a0f0ea AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:46f6253e16c958d89fe3457a8e39572f9716af3769a504f2b978f6b79959fc8b AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 3f1c674a9ca43b51a4f66d702e0e98042ffc2a7a Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 31 Dec 2025 19:47:46 +0000 Subject: [PATCH 032/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 8cb009b (#167) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 7231960..8770a85 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:46f6253e16c958d89fe3457a8e39572f9716af3769a504f2b978f6b79959fc8b AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:8cb009b5aec9f1c726bcc18e5218f11b38dbccecb71b36d0380cf74a90590b14 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From bdf2f605bb2dd3af71bb161f0873ff0cb5c4d354 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 2 Jan 2026 08:27:56 +0000 Subject: [PATCH 033/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to e4d6d3f (#169) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 8770a85..f44a858 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:8cb009b5aec9f1c726bcc18e5218f11b38dbccecb71b36d0380cf74a90590b14 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:e4d6d3fe46223c7d4f022e7914bacb2216abbd22ea118a10d5684807e2c29597 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 14ab0e78067d2c54aabaa093d2448e07915b0368 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 3 Jan 2026 08:57:45 +0000 Subject: [PATCH 034/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 9774883 (#171) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index f44a858..1e75e08 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:e4d6d3fe46223c7d4f022e7914bacb2216abbd22ea118a10d5684807e2c29597 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:97748837871d9bef97a1787597b68839466677c81a4f2174be25d82143b1107a AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 07877fae7a2f5a96e0202fbcd61a6ecf9ce1a7cd Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 5 Jan 2026 09:33:57 +0000 Subject: [PATCH 035/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 2ba2011 (#173) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 1e75e08..7e7ff5b 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:97748837871d9bef97a1787597b68839466677c81a4f2174be25d82143b1107a AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:2ba20111a7fda1475dc5e004914a65bbdacc47a91f7db6ddea07e9dfaaed2f08 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 8f33db76dedac067eb1d103fdf7eb8b75c6f77f8 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 6 Jan 2026 08:42:21 +0000 Subject: [PATCH 036/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to f9ecbf7 (#175) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 7e7ff5b..589c82e 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:2ba20111a7fda1475dc5e004914a65bbdacc47a91f7db6ddea07e9dfaaed2f08 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:f9ecbf7fa768058d2ed7158c82e77553a15eb4e48b046e1e5372925325d9276b AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 578842b3bdeae287b80024e0a40013a03527628d Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 8 Jan 2026 10:11:04 +0000 Subject: [PATCH 037/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 7a3e3a8 (#176) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 589c82e..5f52d50 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:f9ecbf7fa768058d2ed7158c82e77553a15eb4e48b046e1e5372925325d9276b AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:7a3e3a86a9855b98eda7f9c905ee569d9087b95c6ae782dfb95ad6af9e6f800b AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 0faa5a7b0a462409f476faf1b133d96fc7bc8322 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 9 Jan 2026 18:13:30 +0000 Subject: [PATCH 038/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to eb97d5c (#178) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 5f52d50..ead70d2 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:7a3e3a86a9855b98eda7f9c905ee569d9087b95c6ae782dfb95ad6af9e6f800b AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:eb97d5c3fa9bac2733e1e367515a9a28986873f34618a56c27b8e1a3ebce7522 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From abcbd1a76e864c7b3007a7cbee558c6bfc88b3d3 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sun, 11 Jan 2026 16:47:27 +0000 Subject: [PATCH 039/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 5027645 (#181) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index ead70d2..49fbb37 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:eb97d5c3fa9bac2733e1e367515a9a28986873f34618a56c27b8e1a3ebce7522 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:50276457c22c23e676816644237e8d90725db0ab072bc613a72714dd88c1350b AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 086a2bbafa8a07de4ce44d486ffc5c037dfa875b Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 13 Jan 2026 09:51:17 +0000 Subject: [PATCH 040/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 59a830f (#183) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 49fbb37..fa214c1 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:50276457c22c23e676816644237e8d90725db0ab072bc613a72714dd88c1350b AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:59a830f6ef5f01ebf79abf3bc230c0b490aa8e13e1a34568ad7f155bf5485d95 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 2cd8d66bbb803ecba68052a956604735dfe82661 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 14 Jan 2026 19:01:57 +0000 Subject: [PATCH 041/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 9aa3130 (#185) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index fa214c1..cec426b 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:59a830f6ef5f01ebf79abf3bc230c0b490aa8e13e1a34568ad7f155bf5485d95 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:9aa313086c4d4c74e1aafd57792615fdce18e8f53519c9d88a284a8f85ce61ea AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 57e2a7010ea9fe794678951bd36af4a83bf3a70a Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Fri, 16 Jan 2026 12:43:56 -0500 Subject: [PATCH 042/100] Add cleanup for old untagged images. --- .github/workflows/cleanup.yaml | 152 ++++++++++++++++++++++++++++++ .github/workflows/main-build.yaml | 4 +- 2 files changed, 154 insertions(+), 2 deletions(-) create mode 100644 .github/workflows/cleanup.yaml diff --git a/.github/workflows/cleanup.yaml b/.github/workflows/cleanup.yaml new file mode 100644 index 0000000..8f73682 --- /dev/null +++ b/.github/workflows/cleanup.yaml @@ -0,0 +1,152 @@ +permissions: + contents: read + packages: write +on: + schedule: + # Runs weekly on Sunday at 00:00 UTC + - cron: '0 0 * * 0' + workflow_dispatch: + inputs: + dry_run: + description: 'If "true", perform a dry-run (no deletes). Manual runs default to dry-run for safety.' + required: false + default: 'true' +jobs: + cleanup: + name: Cleanup untagged GHCR images older than 30 days + runs-on: ubuntu-latest + # Ensure this runs only against main when scheduled; allow manual dispatch regardless + if: github.ref == 'refs/heads/main' || github.event_name == 'workflow_dispatch' + env: + IMAGE_NAME: framework-fedora-bootc + # For scheduled runs DRY_RUN will be 'false'. For manual dispatch, the input controls it. + DRY_RUN: ${{ (github.event_name == 'workflow_dispatch' && github.event.inputs.dry_run) || 'false' }} + steps: + - name: Checkout (for context) + uses: actions/checkout@v6 + + - name: Install jq + run: | + sudo apt-get update; + sudo apt-get install -y jq + - name: Gather candidate versions + id: gather + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + OWNER: ${{ github.repository_owner }} + PACKAGE: ${{ env.IMAGE_NAME }} + run: | + set -euo pipefail + out=candidates.txt + echo "# id\tcreated_at\tselected" > "$out" + # Determine whether owner is an Organization or User + owner_type=$(curl -s -H "Authorization: Bearer $GITHUB_TOKEN" "https://api.github.com/users/$OWNER" | jq -r '.type') + if [ "$owner_type" = "Organization" ]; then + base="orgs/$OWNER" + else + base="users/$OWNER" + fi + + per_page=100 + page=1 + cutoff_ts=$(date -d "30 days ago" +%s) + while :; do + url="https://api.github.com/${base}/packages/container/${PACKAGE}/versions?per_page=${per_page}&page=${page}" + resp=$(curl -s -H "Authorization: Bearer $GITHUB_TOKEN" -H "Accept: application/vnd.github+json" "$url") + count=$(echo "$resp" | jq 'length') + if [ "$count" -eq 0 ]; then + break + fi + + # For each untagged version, compute whether it's older than cutoff and mark selected=yes/no + echo "$resp" | jq -c '.[] | select((.metadata.container.tags==null) or (.metadata.container.tags | length==0))' | while read -r item; do + id=$(echo "$item" | jq -r '.id') + created=$(echo "$item" | jq -r '.created_at') + created_ts=$(date -d "$created" +%s) + if [ "$created_ts" -lt "$cutoff_ts" ]; then + selected=yes + else + selected=no + fi + printf "%s\t%s\t%s\n" "$id" "$created" "$selected" >> "$out" + done + + page=$((page+1)) + done + + # Add a summary header with counts selected vs total + total=$(tail -n +2 "$out" | wc -l | tr -d ' ') + selected_count=$(tail -n +2 "$out" | awk -F $'\t' '$3=="yes"{c++}END{print c+0}') + not_selected=$((total - selected_count)) + tmp="${out}.tmp" + echo "# summary: selected=${selected_count}\tnot_selected=${not_selected}\ttotal=${total}" > "$tmp" + cat "$out" >> "$tmp" + mv "$tmp" "$out" + + echo "Collected candidate versions (with summary):" + cat "$out" + + - name: Upload candidate list artifact + uses: actions/upload-artifact@v4 + with: + name: ghcr-candidates-${{ github.run_id }} + path: candidates.txt + + - name: Post summary to PR (if running in a PR context) + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + OWNER: ${{ github.repository_owner }} + REPO: ${{ github.event.repository.name || github.repository }} + RUN_ID: ${{ github.run_id }} + run: | + set -euo pipefail + # Try to find a PR associated with this run/commit + pr_number="" + # First, check if event payload has pull_request + if [ "${GITHUB_EVENT_NAME:-}" = "pull_request" ]; then + pr_number=$(jq -r .pull_request.number < "$GITHUB_EVENT_PATH" || true) + fi + # If not found, try commits -> pulls API + if [ -z "$pr_number" ]; then + resp=$(curl -s -H "Authorization: Bearer $GITHUB_TOKEN" -H "Accept: application/vnd.github+json" "https://api.github.com/repos/${OWNER}/${REPO}/commits/${GITHUB_SHA}/pulls") + pr_number=$(echo "$resp" | jq -r '.[0].number // empty') + fi + + if [ -z "$pr_number" ]; then + echo "No PR found for this run/commit; skipping PR comment." + exit 0 + fi + + # Read the summary header from candidates.txt (first line) + summary_line=$(head -n 1 candidates.txt || true) + # Build the comment body with printf to avoid YAML/heredoc parsing issues in editors + printf -v body 'Cleanup candidates summary (run %s):\n\n%s\n\nCandidate list artifact: ghcr-candidates-%s\n\nSee the artifact for the full list of candidate versions (id, created_at, selected).' \ + "$RUN_ID" "$summary_line" "$RUN_ID" + + echo "Posting summary to PR #${pr_number}" + curl -s -X POST -H "Authorization: Bearer $GITHUB_TOKEN" -H "Accept: application/vnd.github+json" \ + -d "{\"body\": $(jq -Rn --arg str "$body" '$str') }" \ + "https://api.github.com/repos/${OWNER}/${REPO}/issues/${pr_number}/comments" > /dev/null + + - name: Perform deletions (reads candidate list) + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + DRY_RUN: ${{ env.DRY_RUN }} + PACKAGE: ${{ env.IMAGE_NAME }} + run: | + set -euo pipefail + echo "DRY_RUN=${DRY_RUN}" + # Skip header + tail -n +2 candidates.txt | while IFS=$'\t' read -r id created selected; do + if [ "$selected" = "yes" ]; then + if [ "${DRY_RUN:-false}" = "true" ]; then + echo "[dry-run] Would delete package version $id (created: $created)" + else + echo "Deleting package version $id (created: $created)" + curl -s -X DELETE -H "Authorization: Bearer $GITHUB_TOKEN" -H "Accept: application/vnd.github+json" \ + "https://api.github.com/${{ github.repository_owner }}/packages/container/${PACKAGE}/versions/${id}" + fi + else + echo "Candidate $id (created: $created) is not older than 30 days; skipping" + fi + done diff --git a/.github/workflows/main-build.yaml b/.github/workflows/main-build.yaml index 7f004c3..0684ed6 100644 --- a/.github/workflows/main-build.yaml +++ b/.github/workflows/main-build.yaml @@ -25,6 +25,8 @@ jobs: steps: - name: Check for PRs referencing this commit id: check + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} run: | # Query GitHub API for pull requests that include this commit resp=$(curl -s -H "Accept: application/vnd.github+json" -H "Authorization: token $GITHUB_TOKEN" "https://api.github.com/repos/${GITHUB_REPOSITORY}/commits/${GITHUB_SHA}/pulls") @@ -34,8 +36,6 @@ jobs: else echo "has_pr=false" >> $GITHUB_OUTPUT fi - env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} build: name: Build and publish image From e54a323ef057440370632489f907dff7adf01e3b Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Fri, 16 Jan 2026 16:14:16 -0500 Subject: [PATCH 043/100] Log by digest and cleanup commit hash tags. --- .github/workflows/cleanup.yaml | 58 ++++++++++++++++++++++++++-------- 1 file changed, 44 insertions(+), 14 deletions(-) diff --git a/.github/workflows/cleanup.yaml b/.github/workflows/cleanup.yaml index 8f73682..41c8727 100644 --- a/.github/workflows/cleanup.yaml +++ b/.github/workflows/cleanup.yaml @@ -38,7 +38,8 @@ jobs: run: | set -euo pipefail out=candidates.txt - echo "# id\tcreated_at\tselected" > "$out" + # Log uses digest first (human-friendly); id is retained for deletion. + printf '# digest\tid\tcreated_at\tselected\n' > "$out" # Determine whether owner is an Organization or User owner_type=$(curl -s -H "Authorization: Bearer $GITHUB_TOKEN" "https://api.github.com/users/$OWNER" | jq -r '.type') if [ "$owner_type" = "Organization" ]; then @@ -58,17 +59,45 @@ jobs: break fi - # For each untagged version, compute whether it's older than cutoff and mark selected=yes/no - echo "$resp" | jq -c '.[] | select((.metadata.container.tags==null) or (.metadata.container.tags | length==0))' | while read -r item; do + # For each version, decide whether it's a candidate: + # - No tags => candidate + # - Tags exist and ALL tags look like commit hashes (7-40 hex chars) => candidate + # - Otherwise skip + echo "$resp" | jq -c '.[]' | while read -r item; do id=$(echo "$item" | jq -r '.id') + digest=$(echo "$item" | jq -r '.metadata.container.digest // empty') created=$(echo "$item" | jq -r '.created_at') created_ts=$(date -d "$created" +%s) - if [ "$created_ts" -lt "$cutoff_ts" ]; then - selected=yes + + # gather tags as space-separated list + tags=$(echo "$item" | jq -r '.metadata.container.tags // [] | join(" ")') + + consider=false + if [ -z "$tags" ]; then + consider=true else - selected=no + # check whether ALL tags look like commit hashes (7-40 hex chars) + all_hashes=true + for t in $tags; do + if ! [[ "$t" =~ ^[0-9a-fA-F]{40}$ ]]; then + all_hashes=false + break + fi + done + if [ "$all_hashes" = true ]; then + consider=true + fi + fi + + if [ "$consider" = true ]; then + if [ "$created_ts" -lt "$cutoff_ts" ]; then + selected=yes + else + selected=no + fi + # Write digest first for logs, keep id for deletion + printf "%s\t%s\t%s\t%s\n" "$digest" "$id" "$created" "$selected" >> "$out" fi - printf "%s\t%s\t%s\n" "$id" "$created" "$selected" >> "$out" done page=$((page+1)) @@ -76,10 +105,11 @@ jobs: # Add a summary header with counts selected vs total total=$(tail -n +2 "$out" | wc -l | tr -d ' ') - selected_count=$(tail -n +2 "$out" | awk -F $'\t' '$3=="yes"{c++}END{print c+0}') + # selected is now the 4th column + selected_count=$(tail -n +2 "$out" | awk -F $'\t' '$4=="yes"{c++}END{print c+0}') not_selected=$((total - selected_count)) tmp="${out}.tmp" - echo "# summary: selected=${selected_count}\tnot_selected=${not_selected}\ttotal=${total}" > "$tmp" + printf '# summary: selected=%s\tnot_selected=%s\ttotal=%s\n' "$selected_count" "$not_selected" "$total" > "$tmp" cat "$out" >> "$tmp" mv "$tmp" "$out" @@ -136,17 +166,17 @@ jobs: run: | set -euo pipefail echo "DRY_RUN=${DRY_RUN}" - # Skip header - tail -n +2 candidates.txt | while IFS=$'\t' read -r id created selected; do + # Skip header; file columns: digest, id, created, selected + tail -n +2 candidates.txt | while IFS=$'\t' read -r digest id created selected; do if [ "$selected" = "yes" ]; then if [ "${DRY_RUN:-false}" = "true" ]; then - echo "[dry-run] Would delete package version $id (created: $created)" + echo "[dry-run] Would delete package version (digest: $digest) (created: $created)" else - echo "Deleting package version $id (created: $created)" + echo "Deleting package version (digest: $digest) (id: $id) (created: $created)" curl -s -X DELETE -H "Authorization: Bearer $GITHUB_TOKEN" -H "Accept: application/vnd.github+json" \ "https://api.github.com/${{ github.repository_owner }}/packages/container/${PACKAGE}/versions/${id}" fi else - echo "Candidate $id (created: $created) is not older than 30 days; skipping" + echo "Candidate (digest: $digest) (created: $created) is not older than 30 days; skipping" fi done From 639d04aa3ab4cb5c83e8992e0642d43af2dfdbc2 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 17 Jan 2026 00:32:16 +0000 Subject: [PATCH 044/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to a7e73d9 (#189) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index cec426b..fc0779d 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:9aa313086c4d4c74e1aafd57792615fdce18e8f53519c9d88a284a8f85ce61ea AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:a7e73d92d4c3d635ea66b9473ec531d6eed43fdeba83be7d32cf76b8dc7ec9e7 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From bdf1f1757dfc9c169965a4ffe7ce6bb7855bcd6e Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 17 Jan 2026 00:32:30 +0000 Subject: [PATCH 045/100] chore(deps): update actions/upload-artifact action to v6 Signed-off-by: Platform Engineering Bot --- .github/workflows/cleanup.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/cleanup.yaml b/.github/workflows/cleanup.yaml index 41c8727..819a050 100644 --- a/.github/workflows/cleanup.yaml +++ b/.github/workflows/cleanup.yaml @@ -117,7 +117,7 @@ jobs: cat "$out" - name: Upload candidate list artifact - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v6 with: name: ghcr-candidates-${{ github.run_id }} path: candidates.txt From af37108c4e5b6b37dda3ac56d4dc25bdd7a5da55 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 17 Jan 2026 16:25:47 +0000 Subject: [PATCH 046/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 4e4d331 (#193) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index fc0779d..833b465 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:a7e73d92d4c3d635ea66b9473ec531d6eed43fdeba83be7d32cf76b8dc7ec9e7 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:4e4d3317bec3c70a33f6dbdc425ab6470234384e6ec3b8a531b266d2441d896d AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 91a146b890bdf42d02c2b2f49d5cd547b69879ac Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 19 Jan 2026 11:08:48 +0000 Subject: [PATCH 047/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 5c22db2 (#195) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 833b465..42968df 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:4e4d3317bec3c70a33f6dbdc425ab6470234384e6ec3b8a531b266d2441d896d AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:5c22db27e5e6a9bdebb5e63cb50fb1b2735663ca871ce75110e046c92913f96a AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From aa1c3cba89f0fbfda6235ae2abe046a3cf089ab1 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 19 Jan 2026 12:53:17 +0000 Subject: [PATCH 048/100] chore(deps): update bootc-image-builder digest to 0781de9 Signed-off-by: Platform Engineering Bot --- bootc-image-builder | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/bootc-image-builder b/bootc-image-builder index dc8bd6a..0781de9 160000 --- a/bootc-image-builder +++ b/bootc-image-builder @@ -1 +1 @@ -Subproject commit dc8bd6ad0b8436b40627a44a4547b792cb7b768f +Subproject commit 0781de98ac88e1008b639b5bd4fbb1b9633ed9fb From 0d28d95ad1f2d4e51b8c03d634f69ecd021b64e7 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 20 Jan 2026 09:35:12 +0000 Subject: [PATCH 049/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to d80f2c0 (#197) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 42968df..0852565 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:5c22db27e5e6a9bdebb5e63cb50fb1b2735663ca871ce75110e046c92913f96a AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:d80f2c08a48e1fdf9a8cd5863ee979456b5bb232a8e40d70aa984f69c3d50d55 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 38b23af1f86bccd81ee47dd1d00670cd92d17b23 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 21 Jan 2026 08:32:19 +0000 Subject: [PATCH 050/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to d3e4bde (#198) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 0852565..caec8cf 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:d80f2c08a48e1fdf9a8cd5863ee979456b5bb232a8e40d70aa984f69c3d50d55 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:d3e4bdec2ae93436922db83a29030a9dddfb15dea6ddb9d90a17381af25f43e4 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From fabc3e2ed6e783fec416f99262c21d17157e4ed1 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 22 Jan 2026 08:33:47 +0000 Subject: [PATCH 051/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 04e6dd4 (#200) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index caec8cf..a8b3c5b 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:d3e4bdec2ae93436922db83a29030a9dddfb15dea6ddb9d90a17381af25f43e4 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:04e6dd46f72930088b3dc3cf8b941faf2897530d48978801b7f9ab061c0ad736 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From b2d75aae0552f5ee75daa8a0e8ce8961e84def6c Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 23 Jan 2026 09:09:24 +0000 Subject: [PATCH 052/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 673848a (#202) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index a8b3c5b..b8bb878 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:04e6dd46f72930088b3dc3cf8b941faf2897530d48978801b7f9ab061c0ad736 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:673848a0e9775f16fb059144122a9866ac8fa69599afe55b60c0ec2946384bb6 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From d3261554df928379f98a32b532d3e32a30a84eaa Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 24 Jan 2026 09:12:13 +0000 Subject: [PATCH 053/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 30d0a50 (#204) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index b8bb878..9acbfdb 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:673848a0e9775f16fb059144122a9866ac8fa69599afe55b60c0ec2946384bb6 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:30d0a50a13fbe8e30dd9592d4e3af7f2ca2f0e78b65b10959a66d054bc807129 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From add5b17da5fcb9015543205554df5faadf441612 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sun, 25 Jan 2026 08:43:00 +0000 Subject: [PATCH 054/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 0b15a6a (#206) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 9acbfdb..daf7f1a 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:30d0a50a13fbe8e30dd9592d4e3af7f2ca2f0e78b65b10959a66d054bc807129 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:0b15a6a2640898436a29cbed3e923977349e1e38af632b34e8d70e032f1cf467 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From f5c519dde30cfaaa9b635a053510daf7ac0a2f38 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 26 Jan 2026 08:49:04 +0000 Subject: [PATCH 055/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to c3f57ab (#208) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index daf7f1a..ed6a623 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:0b15a6a2640898436a29cbed3e923977349e1e38af632b34e8d70e032f1cf467 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:c3f57ab359112832deb3ac6ac1e9930724843c3cd7fbf169b312d7a92839b817 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From b3a9669ff33de8e1d1255441074e4a3663369087 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 28 Jan 2026 01:27:55 +0000 Subject: [PATCH 056/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to c76a0f1 (#211) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index ed6a623..edd2243 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:c3f57ab359112832deb3ac6ac1e9930724843c3cd7fbf169b312d7a92839b817 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:c76a0f17280e59db4b78b594d5c5c986c0ddd34d0b777a6366ff45fce9963595 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 4b3a56482aa7f6cd841df60826b448ebcf9f3a4e Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Wed, 28 Jan 2026 07:33:49 -0500 Subject: [PATCH 057/100] Fix columns parsing for deletions. --- .github/workflows/cleanup.yaml | 23 ++++++++++++----------- 1 file changed, 12 insertions(+), 11 deletions(-) diff --git a/.github/workflows/cleanup.yaml b/.github/workflows/cleanup.yaml index 819a050..0b0b578 100644 --- a/.github/workflows/cleanup.yaml +++ b/.github/workflows/cleanup.yaml @@ -1,6 +1,7 @@ permissions: contents: read packages: write +name: Cleanup old untagged GHCR images. on: schedule: # Runs weekly on Sunday at 00:00 UTC @@ -15,8 +16,8 @@ jobs: cleanup: name: Cleanup untagged GHCR images older than 30 days runs-on: ubuntu-latest - # Ensure this runs only against main when scheduled; allow manual dispatch regardless - if: github.ref == 'refs/heads/main' || github.event_name == 'workflow_dispatch' + # Ensure scheduled runs only execute on `main`; allow manual dispatch on any branch + if: github.event_name == 'workflow_dispatch' || (github.event_name == 'schedule' && github.ref == 'refs/heads/main') env: IMAGE_NAME: framework-fedora-bootc # For scheduled runs DRY_RUN will be 'false'. For manual dispatch, the input controls it. @@ -38,8 +39,8 @@ jobs: run: | set -euo pipefail out=candidates.txt - # Log uses digest first (human-friendly); id is retained for deletion. - printf '# digest\tid\tcreated_at\tselected\n' > "$out" + # Log uses id first (stable key); digest is included for visibility. + printf '# id\tdigest\tcreated_at\tselected\n' > "$out" # Determine whether owner is an Organization or User owner_type=$(curl -s -H "Authorization: Bearer $GITHUB_TOKEN" "https://api.github.com/users/$OWNER" | jq -r '.type') if [ "$owner_type" = "Organization" ]; then @@ -95,8 +96,8 @@ jobs: else selected=no fi - # Write digest first for logs, keep id for deletion - printf "%s\t%s\t%s\t%s\n" "$digest" "$id" "$created" "$selected" >> "$out" + # Write id first (stable key), then digest, created, selected + printf "%s\t%s\t%s\t%s\n" "$id" "$digest" "$created" "$selected" >> "$out" fi done @@ -166,17 +167,17 @@ jobs: run: | set -euo pipefail echo "DRY_RUN=${DRY_RUN}" - # Skip header; file columns: digest, id, created, selected - tail -n +2 candidates.txt | while IFS=$'\t' read -r digest id created selected; do + # Skip header; file columns: id, digest, created, selected + tail -n +2 candidates.txt | while IFS=$'\t' read -r id digest created selected; do if [ "$selected" = "yes" ]; then if [ "${DRY_RUN:-false}" = "true" ]; then - echo "[dry-run] Would delete package version (digest: $digest) (created: $created)" + echo "[dry-run] Would delete package version (id: $id) (digest: $digest) (created: $created)" else - echo "Deleting package version (digest: $digest) (id: $id) (created: $created)" + echo "Deleting package version (id: $id) (digest: $digest) (created: $created)" curl -s -X DELETE -H "Authorization: Bearer $GITHUB_TOKEN" -H "Accept: application/vnd.github+json" \ "https://api.github.com/${{ github.repository_owner }}/packages/container/${PACKAGE}/versions/${id}" fi else - echo "Candidate (digest: $digest) (created: $created) is not older than 30 days; skipping" + echo "Candidate (id: $id) (created: $created) is not older than 30 days; skipping" fi done From 7e5e3d7544c68e09ce4431620683fa49dce8f1e7 Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Wed, 28 Jan 2026 10:14:07 -0500 Subject: [PATCH 058/100] Use awk for better field seperation handling. --- .github/workflows/cleanup.yaml | 33 +++++++++++++++++++-------------- 1 file changed, 19 insertions(+), 14 deletions(-) diff --git a/.github/workflows/cleanup.yaml b/.github/workflows/cleanup.yaml index 0b0b578..6eff9d3 100644 --- a/.github/workflows/cleanup.yaml +++ b/.github/workflows/cleanup.yaml @@ -164,20 +164,25 @@ jobs: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} DRY_RUN: ${{ env.DRY_RUN }} PACKAGE: ${{ env.IMAGE_NAME }} + OWNER: ${{ github.repository_owner }} run: | set -euo pipefail echo "DRY_RUN=${DRY_RUN}" - # Skip header; file columns: id, digest, created, selected - tail -n +2 candidates.txt | while IFS=$'\t' read -r id digest created selected; do - if [ "$selected" = "yes" ]; then - if [ "${DRY_RUN:-false}" = "true" ]; then - echo "[dry-run] Would delete package version (id: $id) (digest: $digest) (created: $created)" - else - echo "Deleting package version (id: $id) (digest: $digest) (created: $created)" - curl -s -X DELETE -H "Authorization: Bearer $GITHUB_TOKEN" -H "Accept: application/vnd.github+json" \ - "https://api.github.com/${{ github.repository_owner }}/packages/container/${PACKAGE}/versions/${id}" - fi - else - echo "Candidate (id: $id) (created: $created) is not older than 30 days; skipping" - fi - done + # Use awk to safely parse TAB-separated fields (preserves empty fields) + # and perform deletions (or dry-run messages). This avoids relying on shell IFS, + # which can collapse multiple adjacent IFS whitespace characters. + awk -F '\t' ' + $0 ~ /^#/ || NF < 4 { next } + id=$1; digest=$2; created=$3; selected=$4 + if (selected == "yes") { + if (ENVIRON["DRY_RUN"] == "true") { + printf "[dry-run] Would delete package version (id: %s) (digest: %s) (created: %s)\n", id, digest, created + } else { + printf "Deleting package version (id: %s) (digest: %s) (created: %s)\n", id, digest, created + cmd = "curl -s -X DELETE -H \"Authorization: Bearer " ENVIRON["GITHUB_TOKEN"] "\" -H \"Accept: application/vnd.github+json\" \"https://api.github.com/" ENVIRON["OWNER"] "/packages/container/" ENVIRON["PACKAGE"] "/versions/" id "\"" + system(cmd) + } + } else { + printf "Candidate (id: %s) (created: %s) is not older than 30 days; skipping\n", id, created + } + ' candidates.txt From d68238da171e3781326c9f50ae6e9cc2ddd296e6 Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Wed, 28 Jan 2026 11:28:54 -0500 Subject: [PATCH 059/100] Fix awk syntax error? --- .github/workflows/cleanup.yaml | 25 ++++++++++++------------- 1 file changed, 12 insertions(+), 13 deletions(-) diff --git a/.github/workflows/cleanup.yaml b/.github/workflows/cleanup.yaml index 6eff9d3..69dc349 100644 --- a/.github/workflows/cleanup.yaml +++ b/.github/workflows/cleanup.yaml @@ -171,18 +171,17 @@ jobs: # Use awk to safely parse TAB-separated fields (preserves empty fields) # and perform deletions (or dry-run messages). This avoids relying on shell IFS, # which can collapse multiple adjacent IFS whitespace characters. - awk -F '\t' ' - $0 ~ /^#/ || NF < 4 { next } - id=$1; digest=$2; created=$3; selected=$4 - if (selected == "yes") { - if (ENVIRON["DRY_RUN"] == "true") { - printf "[dry-run] Would delete package version (id: %s) (digest: %s) (created: %s)\n", id, digest, created - } else { - printf "Deleting package version (id: %s) (digest: %s) (created: %s)\n", id, digest, created - cmd = "curl -s -X DELETE -H \"Authorization: Bearer " ENVIRON["GITHUB_TOKEN"] "\" -H \"Accept: application/vnd.github+json\" \"https://api.github.com/" ENVIRON["OWNER"] "/packages/container/" ENVIRON["PACKAGE"] "/versions/" id "\"" - system(cmd) - } + # Feed the awk program via heredoc to avoid shell/YAML mangling of quotes + awk -F '\t' -f - candidates.txt <<'AWK' | bash -euo pipefail + $0 ~ /^#/ || NF < 4 { next } + id=$1; digest=$2; created=$3; selected=$4 + if (selected == "yes") { + if (ENVIRON["DRY_RUN"] == "true") { + printf "echo [dry-run] Would delete package version (id: %s) (digest: %s) (created: %s)\n", id, digest, created } else { - printf "Candidate (id: %s) (created: %s) is not older than 30 days; skipping\n", id, created + printf "curl -s -X DELETE -H \"Authorization: Bearer %s\" -H \"Accept: application/vnd.github+json\" \"https://api.github.com/%s/packages/container/%s/versions/%s\"\n", ENVIRON["GITHUB_TOKEN"], ENVIRON["OWNER"], ENVIRON["PACKAGE"], id } - ' candidates.txt + } else { + printf "echo Candidate (id: %s) (created: %s) is not older than 30 days; skipping\n", id, created + } + AWK From dcfa7cc70e484402f84e750eb6f68653ddb88429 Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Wed, 28 Jan 2026 12:02:47 -0500 Subject: [PATCH 060/100] Use python since awk is being a pain. --- .github/scripts/perform_deletions.py | 52 ++++++++++++++++++++++++++++ .github/workflows/cleanup.yaml | 21 +++-------- 2 files changed, 56 insertions(+), 17 deletions(-) create mode 100644 .github/scripts/perform_deletions.py diff --git a/.github/scripts/perform_deletions.py b/.github/scripts/perform_deletions.py new file mode 100644 index 0000000..a29c7b5 --- /dev/null +++ b/.github/scripts/perform_deletions.py @@ -0,0 +1,52 @@ +#!/usr/bin/env python3 +"""Parse candidates.txt (TAB-separated, preserves empty fields) and perform deletions. +Reads environment variables: DRY_RUN, OWNER, PACKAGE, GITHUB_TOKEN. +This version reads the header (a # comment line) to determine column order +so it matches the workflow's output exactly. +""" +import os +import subprocess +import sys + +DRY_RUN = os.environ.get("DRY_RUN", "true").lower() == "true" +OWNER = os.environ.get("OWNER") +PACKAGE = os.environ.get("PACKAGE") +GITHUB_TOKEN = os.environ.get("GITHUB_TOKEN") + +if OWNER is None or PACKAGE is None: + print("Missing OWNER or PACKAGE environment variables; aborting.") + raise SystemExit(1) + +path = "candidates.txt" +if not os.path.exists(path): + print(f"{path} not found; aborting.") + raise SystemExit(1) + +with open(path, "r", newline="") as f: + for raw in f: + line = raw.rstrip("\n") + if not line or line.startswith("#"): + continue + fields = line.split("\t") + if len(fields) < 4: + continue + # Workflow writes: id, digest, created_at, selected + id_, digest, created, selected = fields[0], fields[1], fields[2], fields[3] + + if selected == 'yes': + if DRY_RUN: + print(f"[dry-run] Would delete package version (id: {id_}) (digest: {digest}) (created: {created})") + else: + print(f"Deleting package version (id: {id_}) (digest: {digest}) (created: {created})") + cmd = [ + 'curl', '-s', '-X', 'DELETE', + '-H', f'Authorization: Bearer {GITHUB_TOKEN}', + '-H', 'Accept: application/vnd.github+json', + f'https://api.github.com/{OWNER}/packages/container/{PACKAGE}/versions/{id_}', + ] + try: + subprocess.run(cmd, check=False) + except Exception as e: + print('Warning: curl failed:', e) + else: + print(f"Candidate (id: {id_}) (created: {created}) is not older than 30 days; skipping") diff --git a/.github/workflows/cleanup.yaml b/.github/workflows/cleanup.yaml index 69dc349..159872d 100644 --- a/.github/workflows/cleanup.yaml +++ b/.github/workflows/cleanup.yaml @@ -168,20 +168,7 @@ jobs: run: | set -euo pipefail echo "DRY_RUN=${DRY_RUN}" - # Use awk to safely parse TAB-separated fields (preserves empty fields) - # and perform deletions (or dry-run messages). This avoids relying on shell IFS, - # which can collapse multiple adjacent IFS whitespace characters. - # Feed the awk program via heredoc to avoid shell/YAML mangling of quotes - awk -F '\t' -f - candidates.txt <<'AWK' | bash -euo pipefail - $0 ~ /^#/ || NF < 4 { next } - id=$1; digest=$2; created=$3; selected=$4 - if (selected == "yes") { - if (ENVIRON["DRY_RUN"] == "true") { - printf "echo [dry-run] Would delete package version (id: %s) (digest: %s) (created: %s)\n", id, digest, created - } else { - printf "curl -s -X DELETE -H \"Authorization: Bearer %s\" -H \"Accept: application/vnd.github+json\" \"https://api.github.com/%s/packages/container/%s/versions/%s\"\n", ENVIRON["GITHUB_TOKEN"], ENVIRON["OWNER"], ENVIRON["PACKAGE"], id - } - } else { - printf "echo Candidate (id: %s) (created: %s) is not older than 30 days; skipping\n", id, created - } - AWK + # Use an embedded Python script to parse TAB-separated fields (preserves empty fields) + # and perform deletions (or dry-run messages). This avoids awk quoting/syntax issues. + # Call the deletion helper script (keeps workflow YAML clean) + python3 .github/scripts/perform_deletions.py From 308a4a5066307341f1611369aaf9a3677a2f2d5d Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 28 Jan 2026 22:27:29 +0000 Subject: [PATCH 061/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 4f23d1d (#214) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index edd2243..e178f95 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:c76a0f17280e59db4b78b594d5c5c986c0ddd34d0b777a6366ff45fce9963595 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:4f23d1dc70a7ad2d78bb42a02c54c6dbf746c80b62d383db88311b980a22bd01 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 46e3c966855e1135f22afc189cef206f58c023c0 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 30 Jan 2026 09:04:58 +0000 Subject: [PATCH 062/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 1bacf16 (#216) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index e178f95..a190ae6 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:4f23d1dc70a7ad2d78bb42a02c54c6dbf746c80b62d383db88311b980a22bd01 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:1bacf16cf77af93b064f6ff749c46a529249899e37c057ac64fc8fd238eb60ad AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From ac46fdfc8026a526fc690ecda02fc29ce7cd1d4d Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 31 Jan 2026 08:37:45 +0000 Subject: [PATCH 063/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 730daf4 (#218) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index a190ae6..44fbb3e 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:1bacf16cf77af93b064f6ff749c46a529249899e37c057ac64fc8fd238eb60ad AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:730daf43f03922d1389e7959a0cf587bf2434779b6351ae91aaab06d41146e52 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 43ec21705cb672fef188df77c278e4d2bb0c6dca Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sun, 1 Feb 2026 22:01:32 +0000 Subject: [PATCH 064/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 0ac397f (#220) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 44fbb3e..6bb358f 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:730daf43f03922d1389e7959a0cf587bf2434779b6351ae91aaab06d41146e52 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:0ac397fe034b9fe2dc6c92b25df29eb80f02092dad5117128ec141a1d6c91186 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 0230b17e510cfae689c66371d5204a5831990d0b Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 3 Feb 2026 20:59:33 +0000 Subject: [PATCH 065/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 1a43fe6 (#222) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 6bb358f..2fb80a4 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:0ac397fe034b9fe2dc6c92b25df29eb80f02092dad5117128ec141a1d6c91186 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:1a43fe60e1f5125572696a9f3560c41d445dcb9ce025245673d94a1a1f1f3a18 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 3ef099a0a449c175d5c6454a864d6629b1ca46fa Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 5 Feb 2026 10:00:04 +0000 Subject: [PATCH 066/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 8d04051 (#224) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 2fb80a4..6163e89 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:1a43fe60e1f5125572696a9f3560c41d445dcb9ce025245673d94a1a1f1f3a18 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:8d040512aaecebd77a13cf301db0a131604f715b4f4eb1b22390e2d2b0031b98 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 50bca0150eb5323a877b034a840d9b4b88d990a0 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 7 Feb 2026 09:44:39 +0000 Subject: [PATCH 067/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 4121442 (#226) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 6163e89..85e3ac6 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:8d040512aaecebd77a13cf301db0a131604f715b4f4eb1b22390e2d2b0031b98 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:4121442b61b21566bf58b101f027bcd7d2a2269f32bd3b30d5c50a5d3cf90225 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 35df34096c4964b6b02271ef337ca71ec0c7a632 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 9 Feb 2026 09:29:16 +0000 Subject: [PATCH 068/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 4f3ea08 (#230) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 85e3ac6..ff3b70e 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:4121442b61b21566bf58b101f027bcd7d2a2269f32bd3b30d5c50a5d3cf90225 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:4f3ea088f81995433a5f30e50ecc69e49ab68c7647d95a145d8ad2d2bc0bd8f8 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From f99fa4a3c27de81cc876cb4d42a9d82be66e2ab0 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 9 Feb 2026 18:40:41 +0000 Subject: [PATCH 069/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 3ef7269 (#232) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index ff3b70e..dc1b8dd 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:4f3ea088f81995433a5f30e50ecc69e49ab68c7647d95a145d8ad2d2bc0bd8f8 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:3ef7269cc7134242c5e7d093d52da9f1fd8f18db067f3fa9f81d99a7dafa926c AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 58f99a6ce5e0528e4ee056100c2924c4da19431b Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 11 Feb 2026 15:23:25 +0000 Subject: [PATCH 070/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 1cfbf52 (#234) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index dc1b8dd..ec89e3d 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:3ef7269cc7134242c5e7d093d52da9f1fd8f18db067f3fa9f81d99a7dafa926c AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:1cfbf52f3fc967a6047a38e6fa81c5779439c4d821a5ff0f3265c53662886958 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From d6abf65ad8d020c8f2a641f9cf12f3f910ac004a Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 11 Feb 2026 17:07:01 +0000 Subject: [PATCH 071/100] chore(deps): update bootc-image-builder digest to 410e3c7 Signed-off-by: Platform Engineering Bot --- bootc-image-builder | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/bootc-image-builder b/bootc-image-builder index 0781de9..410e3c7 160000 --- a/bootc-image-builder +++ b/bootc-image-builder @@ -1 +1 @@ -Subproject commit 0781de98ac88e1008b639b5bd4fbb1b9633ed9fb +Subproject commit 410e3c7412b0858cc47646cda7bfeff6d0f65cb6 From 83712e5884e5567c906d623d1c97158bf370ad6c Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 14 Feb 2026 09:07:37 +0000 Subject: [PATCH 072/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 74e1ea3 (#237) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index ec89e3d..48086d2 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:1cfbf52f3fc967a6047a38e6fa81c5779439c4d821a5ff0f3265c53662886958 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:74e1ea3d4bb1b4dd9e364d13c2ec4ee465289ba6d373dd2f39f959644e833354 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 99776c7f372046b627d9836229bfca57f09c3beb Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 16 Feb 2026 08:56:12 +0000 Subject: [PATCH 073/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 01cb63a (#238) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 48086d2..edd351c 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:74e1ea3d4bb1b4dd9e364d13c2ec4ee465289ba6d373dd2f39f959644e833354 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:01cb63a2bc823d68928c93d74deb876f551031c0437465fb85efbcf11979f780 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 762379f90ab0fa65dfc312ce9d4b1ebebd820e5a Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 17 Feb 2026 21:12:26 +0000 Subject: [PATCH 074/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 359522c (#240) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index edd351c..9d56cfa 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:01cb63a2bc823d68928c93d74deb876f551031c0437465fb85efbcf11979f780 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:359522c261b93edd4ab2d22a817a9b94221c1b1d923eea2b52eac12a0a01263a AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 3baa9c07c4967a330622a1fa71089d642125b157 Mon Sep 17 00:00:00 2001 From: CompPhy Date: Fri, 20 Feb 2026 16:18:51 -0500 Subject: [PATCH 075/100] Add wireguard-tools. --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 9d56cfa..bc4c0b5 100644 --- a/Containerfile +++ b/Containerfile @@ -10,7 +10,7 @@ RUN bootc container lint FROM builder COPY files/vscode.repo /etc/yum.repos.d/ -RUN dnf install -y code firefox terminator && dnf clean all +RUN dnf install -y code firefox terminator wireguard-tools && dnf clean all RUN dnf install -y https://mirrors.rpmfusion.org/free/fedora/rpmfusion-free-release-$(rpm -E %fedora).noarch.rpm https://mirrors.rpmfusion.org/nonfree/fedora/rpmfusion-nonfree-release-$(rpm -E %fedora).noarch.rpm RUN dnf config-manager setopt fedora-cisco-openh264.enabled=1 RUN dnf install -y steam && dnf clean all From 70034cabeaa1b27783a2ce4125a65520e612e736 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 20 Feb 2026 21:37:15 +0000 Subject: [PATCH 076/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 69b6a26 Signed-off-by: Platform Engineering Bot --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 9d56cfa..bfd86fc 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:359522c261b93edd4ab2d22a817a9b94221c1b1d923eea2b52eac12a0a01263a AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:69b6a260efba5ee180fce21959665dcba4e6d360cfff166daf74a5b14ff418e9 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 6fdff5247c51538a1112076e08bff9180d0ec3f1 Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Fri, 20 Feb 2026 17:21:13 -0500 Subject: [PATCH 077/100] Don't use this PR check, it can block build of legit PR's. --- .github/workflows/main-build.yaml | 22 ---------------------- 1 file changed, 22 deletions(-) diff --git a/.github/workflows/main-build.yaml b/.github/workflows/main-build.yaml index 0684ed6..052db7c 100644 --- a/.github/workflows/main-build.yaml +++ b/.github/workflows/main-build.yaml @@ -17,31 +17,9 @@ concurrency: cancel-in-progress: true jobs: - pr-check: - name: Check for open PR for this commit - runs-on: ubuntu-latest - outputs: - has_pr: ${{ steps.check.outputs.has_pr }} - steps: - - name: Check for PRs referencing this commit - id: check - env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - run: | - # Query GitHub API for pull requests that include this commit - resp=$(curl -s -H "Accept: application/vnd.github+json" -H "Authorization: token $GITHUB_TOKEN" "https://api.github.com/repos/${GITHUB_REPOSITORY}/commits/${GITHUB_SHA}/pulls") - count=$(echo "$resp" | python -c "import sys,json; print(len(json.load(sys.stdin)))") - if [ "$count" -gt 0 ]; then - echo "has_pr=true" >> $GITHUB_OUTPUT - else - echo "has_pr=false" >> $GITHUB_OUTPUT - fi - build: name: Build and publish image runs-on: ubuntu-latest - needs: pr-check - if: needs.pr-check.outputs.has_pr == 'false' env: IMAGE_NAME: framework-fedora-bootc REGISTRY: ghcr.io/compphy From 87ad397bd68de18f339750f5686121558ffff091 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 23 Feb 2026 10:09:29 +0000 Subject: [PATCH 078/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 5d3aad7 (#246) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 9629fc8..86f449d 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:69b6a260efba5ee180fce21959665dcba4e6d360cfff166daf74a5b14ff418e9 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:5d3aad70fb43232e2de3de921c2af2beda1800ff16e440369ac1b87f60c86ac9 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From ff18c5db8d08b1a88a25d8a1c301cd12221116fa Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 25 Feb 2026 09:40:05 +0000 Subject: [PATCH 079/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 4b07d01 (#248) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 86f449d..0795f80 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:5d3aad70fb43232e2de3de921c2af2beda1800ff16e440369ac1b87f60c86ac9 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:4b07d0155fac4274c4a90c26f4b91c096d2a35d365877f6bd0412da6d99a7504 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 793602e0fa7672b485990697285dc1fdf6db7bd8 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 26 Feb 2026 14:18:26 +0000 Subject: [PATCH 080/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 550cf54 (#250) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 0795f80..3a773a8 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:4b07d0155fac4274c4a90c26f4b91c096d2a35d365877f6bd0412da6d99a7504 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:550cf54abdf065f2fb0f1a67c8ae9f24b1887914216b1a41fe11b6e235734e84 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 810cff5af6fc4ee5daecf30d983ff656a600c9aa Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 28 Feb 2026 09:15:59 +0000 Subject: [PATCH 081/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to f3d8993 (#251) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 3a773a8..db41891 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:550cf54abdf065f2fb0f1a67c8ae9f24b1887914216b1a41fe11b6e235734e84 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:f3d8993ba7d3b5597ce052fa7cd12338a8ce102e626b96a54cd584e684f37b43 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 17f9bde51d710babca76a2cf2be85fa93f337aa7 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 28 Feb 2026 09:16:07 +0000 Subject: [PATCH 082/100] chore(deps): update actions/upload-artifact action to v7 Signed-off-by: Platform Engineering Bot --- .github/workflows/cleanup.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/cleanup.yaml b/.github/workflows/cleanup.yaml index 159872d..f8a3c54 100644 --- a/.github/workflows/cleanup.yaml +++ b/.github/workflows/cleanup.yaml @@ -118,7 +118,7 @@ jobs: cat "$out" - name: Upload candidate list artifact - uses: actions/upload-artifact@v6 + uses: actions/upload-artifact@v7 with: name: ghcr-candidates-${{ github.run_id }} path: candidates.txt From 064f40c0f6f1de21e008c6d87c7840c90a2ccf42 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 28 Feb 2026 18:14:50 +0000 Subject: [PATCH 083/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 5dc10b6 Signed-off-by: Platform Engineering Bot --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index db41891..8b83e84 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:f3d8993ba7d3b5597ce052fa7cd12338a8ce102e626b96a54cd584e684f37b43 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:5dc10b6a6773a5a6ec46f84d2bd2e859a13dfc1126b2b26899b03a5782cf78f9 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all From 1e3731ab31d501a5ba2e449375167ffae64e5e88 Mon Sep 17 00:00:00 2001 From: CompPhy Date: Sat, 28 Feb 2026 13:11:08 -0500 Subject: [PATCH 084/100] Add solaar for logitech mice. --- Containerfile | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/Containerfile b/Containerfile index 8b83e84..c2621b5 100644 --- a/Containerfile +++ b/Containerfile @@ -13,6 +13,5 @@ COPY files/vscode.repo /etc/yum.repos.d/ RUN dnf install -y code firefox terminator wireguard-tools && dnf clean all RUN dnf install -y https://mirrors.rpmfusion.org/free/fedora/rpmfusion-free-release-$(rpm -E %fedora).noarch.rpm https://mirrors.rpmfusion.org/nonfree/fedora/rpmfusion-nonfree-release-$(rpm -E %fedora).noarch.rpm RUN dnf config-manager setopt fedora-cisco-openh264.enabled=1 -RUN dnf install -y steam && dnf clean all +RUN dnf install -y steam solaar && dnf clean all RUN bootc container lint - From d322691bc15baf0b8f9f36b269762efdade0a794 Mon Sep 17 00:00:00 2001 From: CompPhy Date: Sat, 28 Feb 2026 13:36:58 -0500 Subject: [PATCH 085/100] Reduce build time a little. --- Containerfile | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/Containerfile b/Containerfile index c2621b5..372d028 100644 --- a/Containerfile +++ b/Containerfile @@ -1,7 +1,7 @@ FROM quay.io/fedora/fedora-bootc:43@sha256:5dc10b6a6773a5a6ec46f84d2bd2e859a13dfc1126b2b26899b03a5782cf78f9 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh -RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games; dnf clean all +RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games && dnf clean all RUN systemctl disable abrtd atd mcelog RUN systemctl set-default graphical.target RUN ln -snf ../usr/share/zoneinfo/America/New_York /etc/localtime @@ -10,8 +10,7 @@ RUN bootc container lint FROM builder COPY files/vscode.repo /etc/yum.repos.d/ -RUN dnf install -y code firefox terminator wireguard-tools && dnf clean all RUN dnf install -y https://mirrors.rpmfusion.org/free/fedora/rpmfusion-free-release-$(rpm -E %fedora).noarch.rpm https://mirrors.rpmfusion.org/nonfree/fedora/rpmfusion-nonfree-release-$(rpm -E %fedora).noarch.rpm RUN dnf config-manager setopt fedora-cisco-openh264.enabled=1 -RUN dnf install -y steam solaar && dnf clean all +RUN dnf install -y code firefox terminator wireguard-tools steam solaar && dnf clean all RUN bootc container lint From f81f1ce21cbf065a9cead8a23ad307e5a725a675 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 3 Mar 2026 09:37:43 +0000 Subject: [PATCH 086/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 37c9e4e (#257) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 372d028..463c26b 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:5dc10b6a6773a5a6ec46f84d2bd2e859a13dfc1126b2b26899b03a5782cf78f9 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:37c9e4e3f7d79171a4018e811ed2e7be4247c5c532646694babbd8a1782f9fb2 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games && dnf clean all From ffa472b1920aa430a27377aef978715a4a956214 Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Wed, 4 Mar 2026 16:26:24 -0500 Subject: [PATCH 087/100] Build on bootc-image-builder updates. --- .github/workflows/pr-build.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/pr-build.yaml b/.github/workflows/pr-build.yaml index d2b0e78..652bd09 100644 --- a/.github/workflows/pr-build.yaml +++ b/.github/workflows/pr-build.yaml @@ -8,6 +8,7 @@ on: paths: - Containerfile - .github/workflows/pr-build.yaml + - bootc-image-builder concurrency: group: ${{ github.workflow }}-${{ github.ref }} From ff436503b9ea2c214d783e5421e447f0fb7f9bfd Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 5 Mar 2026 00:35:18 +0000 Subject: [PATCH 088/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 4df27c2 (#258) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 463c26b..0d77a40 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:37c9e4e3f7d79171a4018e811ed2e7be4247c5c532646694babbd8a1782f9fb2 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:4df27c20cec3c0acb6e241e8b2913f8802acaabeed3bfb3d9c941eb748cb655a AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games && dnf clean all From 2ca73b505bf3dc12bce28d2d428adde7c7f507c2 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 5 Mar 2026 13:39:18 +0000 Subject: [PATCH 089/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 512d940 Signed-off-by: Platform Engineering Bot --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 0d77a40..c45d5fd 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:4df27c20cec3c0acb6e241e8b2913f8802acaabeed3bfb3d9c941eb748cb655a AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:512d9408457fcc0724bd594b359ce7a5d3e73bf08f9c6f73426955f612aba010 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games && dnf clean all From 0d951eb9b5359796e820a39cccd356c22f909410 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 7 Mar 2026 09:12:15 +0000 Subject: [PATCH 090/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 0d51a83 (#263) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index c45d5fd..3c6a75c 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:512d9408457fcc0724bd594b359ce7a5d3e73bf08f9c6f73426955f612aba010 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:0d51a83a1e1c6a2302bf746a5743f6d15c023115912548c4ce642c2a428da190 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games && dnf clean all From 1194549ab70d11ebd423b3858caf0a9e1b3a254e Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sun, 8 Mar 2026 17:50:24 +0000 Subject: [PATCH 091/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 45be5ff (#266) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 3c6a75c..44d2a92 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:0d51a83a1e1c6a2302bf746a5743f6d15c023115912548c4ce642c2a428da190 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:45be5ff1ec19fdb9ab03510acb4a7ff2e7bb2243bc9300eba7bb14da18ac4ba2 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games && dnf clean all From 15d45989a1810cc038b3e339430ab7230e45e464 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 10 Mar 2026 09:42:08 +0000 Subject: [PATCH 092/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to 90bd18a (#268) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 44d2a92..c067019 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:45be5ff1ec19fdb9ab03510acb4a7ff2e7bb2243bc9300eba7bb14da18ac4ba2 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:90bd18a83203bdadf386cef00a0cd1fdcd52c4bc8224d43999176a1e50e92dcc AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games && dnf clean all From e3b5973710f611ae222aebcc6933ea81abb8931c Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 11 Mar 2026 09:30:20 +0000 Subject: [PATCH 093/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to f59a8f9 (#269) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index c067019..268eb92 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:90bd18a83203bdadf386cef00a0cd1fdcd52c4bc8224d43999176a1e50e92dcc AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:f59a8f940a6ccb3b78d694aefa6d8cd0140d5bfeb6a98cc725a3393f101bcd61 AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games && dnf clean all From bb4f24c995c17e9a3507bad89184648856792ad7 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 12 Mar 2026 10:59:59 +0000 Subject: [PATCH 094/100] chore(deps): update bootc-image-builder digest to ee18461 Signed-off-by: Platform Engineering Bot --- bootc-image-builder | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/bootc-image-builder b/bootc-image-builder index 5b2ef48..ee18461 160000 --- a/bootc-image-builder +++ b/bootc-image-builder @@ -1 +1 @@ -Subproject commit 5b2ef48e08077fb76d34102ce976373b0c4a91dc +Subproject commit ee184614c4bd00034aec1543990997da9c153315 From abc7daac8307f2dec6b7c751f4ed50432fef41c1 Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Thu, 12 Mar 2026 07:07:31 -0400 Subject: [PATCH 095/100] Print debug information. --- .github/workflows/cleanup.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/cleanup.yaml b/.github/workflows/cleanup.yaml index f8a3c54..235531d 100644 --- a/.github/workflows/cleanup.yaml +++ b/.github/workflows/cleanup.yaml @@ -65,6 +65,7 @@ jobs: # - Tags exist and ALL tags look like commit hashes (7-40 hex chars) => candidate # - Otherwise skip echo "$resp" | jq -c '.[]' | while read -r item; do + printf( "Processing item: %s\n" "$(echo "$item" | jq ." ) >&2 id=$(echo "$item" | jq -r '.id') digest=$(echo "$item" | jq -r '.metadata.container.digest // empty') created=$(echo "$item" | jq -r '.created_at') From 844169d8dd9dd961408f11faeab5d0a87a469678 Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Thu, 12 Mar 2026 07:12:32 -0400 Subject: [PATCH 096/100] Need comma. --- .github/workflows/cleanup.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/cleanup.yaml b/.github/workflows/cleanup.yaml index 235531d..1e6c2b1 100644 --- a/.github/workflows/cleanup.yaml +++ b/.github/workflows/cleanup.yaml @@ -65,7 +65,7 @@ jobs: # - Tags exist and ALL tags look like commit hashes (7-40 hex chars) => candidate # - Otherwise skip echo "$resp" | jq -c '.[]' | while read -r item; do - printf( "Processing item: %s\n" "$(echo "$item" | jq ." ) >&2 + printf( "Processing item: %s\n", "$(echo "$item" | jq ." ) >&2 id=$(echo "$item" | jq -r '.id') digest=$(echo "$item" | jq -r '.metadata.container.digest // empty') created=$(echo "$item" | jq -r '.created_at') From a77d7bf53264a8ed1e9a680a1341d49b946e58a7 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 12 Mar 2026 11:12:56 +0000 Subject: [PATCH 097/100] chore(deps): update quay.io/fedora/fedora-bootc:43 docker digest to f804bd7 (#271) Signed-off-by: Platform Engineering Bot Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- Containerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Containerfile b/Containerfile index 268eb92..7423cbe 100644 --- a/Containerfile +++ b/Containerfile @@ -1,4 +1,4 @@ -FROM quay.io/fedora/fedora-bootc:43@sha256:f59a8f940a6ccb3b78d694aefa6d8cd0140d5bfeb6a98cc725a3393f101bcd61 AS builder +FROM quay.io/fedora/fedora-bootc:43@sha256:f804bd7a5c680b65e77ce7272cf0f04ca77e049f836df4e9added920fc733fcc AS builder # https://bugzilla.redhat.com/show_bug.cgi?id=2381864 RUN dnf upgrade -y --refresh RUN dnf install -y --exclude rootfiles @kde-desktop-environment @development-tools @container-management @system-tools @games && dnf clean all From 88fbdb426be3acc46b44820c39704f200730f8c5 Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Thu, 12 Mar 2026 11:41:39 -0400 Subject: [PATCH 098/100] Remove for syntax errors. --- .github/workflows/cleanup.yaml | 1 - 1 file changed, 1 deletion(-) diff --git a/.github/workflows/cleanup.yaml b/.github/workflows/cleanup.yaml index 1e6c2b1..f8a3c54 100644 --- a/.github/workflows/cleanup.yaml +++ b/.github/workflows/cleanup.yaml @@ -65,7 +65,6 @@ jobs: # - Tags exist and ALL tags look like commit hashes (7-40 hex chars) => candidate # - Otherwise skip echo "$resp" | jq -c '.[]' | while read -r item; do - printf( "Processing item: %s\n", "$(echo "$item" | jq ." ) >&2 id=$(echo "$item" | jq -r '.id') digest=$(echo "$item" | jq -r '.metadata.container.digest // empty') created=$(echo "$item" | jq -r '.created_at') From c55738a22b7dd81a279988ccc102cc8067e9f9ea Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Thu, 12 Mar 2026 11:42:05 -0400 Subject: [PATCH 099/100] More debug information to see why API calls are failing. --- .github/scripts/perform_deletions.py | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/.github/scripts/perform_deletions.py b/.github/scripts/perform_deletions.py index a29c7b5..8f3bffa 100644 --- a/.github/scripts/perform_deletions.py +++ b/.github/scripts/perform_deletions.py @@ -17,6 +17,8 @@ print("Missing OWNER or PACKAGE environment variables; aborting.") raise SystemExit(1) +print(f"DRY_RUN={DRY_RUN}, OWNER={OWNER}, PACKAGE={PACKAGE}") + path = "candidates.txt" if not os.path.exists(path): print(f"{path} not found; aborting.") @@ -39,7 +41,7 @@ else: print(f"Deleting package version (id: {id_}) (digest: {digest}) (created: {created})") cmd = [ - 'curl', '-s', '-X', 'DELETE', + 'curl', '-s', '-L','-X', 'DELETE', '-H', f'Authorization: Bearer {GITHUB_TOKEN}', '-H', 'Accept: application/vnd.github+json', f'https://api.github.com/{OWNER}/packages/container/{PACKAGE}/versions/{id_}', From 26ecdf87a3eab9b369f5032a05dc402f9cca647e Mon Sep 17 00:00:00 2001 From: Kelly Shutt Date: Thu, 12 Mar 2026 12:11:26 -0400 Subject: [PATCH 100/100] The "owner" call here is slightly incorrect. --- .github/scripts/perform_deletions.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/scripts/perform_deletions.py b/.github/scripts/perform_deletions.py index 8f3bffa..20926c5 100644 --- a/.github/scripts/perform_deletions.py +++ b/.github/scripts/perform_deletions.py @@ -44,7 +44,7 @@ 'curl', '-s', '-L','-X', 'DELETE', '-H', f'Authorization: Bearer {GITHUB_TOKEN}', '-H', 'Accept: application/vnd.github+json', - f'https://api.github.com/{OWNER}/packages/container/{PACKAGE}/versions/{id_}', + f'https://api.github.com/users/{OWNER}/packages/container/{PACKAGE}/versions/{id_}', ] try: subprocess.run(cmd, check=False)