From 544b8bf066a914eedd059fd0fdcf3f218385d5d0 Mon Sep 17 00:00:00 2001 From: Vasil Sudakou Date: Mon, 16 Feb 2026 18:40:14 +0300 Subject: [PATCH 1/5] fix(app-proxy-init): migrate to DHI base image From 52b7ec19ae1a179ecdeb08324647f6ecef06069f Mon Sep 17 00:00:00 2001 From: Vasil Sudakou Date: Mon, 16 Feb 2026 18:42:23 +0300 Subject: [PATCH 2/5] fix(nginx-unprivileged): update to 1.29-alpine3.23 --- charts/gitops-runtime/values.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/charts/gitops-runtime/values.yaml b/charts/gitops-runtime/values.yaml index 0bc503910..8026dc0a7 100644 --- a/charts/gitops-runtime/values.yaml +++ b/charts/gitops-runtime/values.yaml @@ -327,7 +327,7 @@ internal-router: image: repository: docker.io/nginxinc/nginx-unprivileged pullPolicy: IfNotPresent - tag: 1.29-alpine3.22 + tag: 1.29-alpine3.23 imagePullSecrets: [] nameOverride: "" fullnameOverride: "internal-router" From b593cf1351e0f4d978bdb91e41c60a7254c61b86 Mon Sep 17 00:00:00 2001 From: pysarenko-bohdan Date: Mon, 16 Feb 2026 08:54:13 +0200 Subject: [PATCH 3/5] feat: move runtime-installer images to dhi (#1091) * update dockerfile with dhi * update codeowners --------- Co-authored-by: Zhenya Tikhonov --- CODEOWNERS | 4 ++-- installer-image/Dockerfile | 27 +++++++++++---------------- 2 files changed, 13 insertions(+), 18 deletions(-) diff --git a/CODEOWNERS b/CODEOWNERS index 2c5f66a4c..385e6dc2d 100644 --- a/CODEOWNERS +++ b/CODEOWNERS @@ -1,4 +1,4 @@ -* @codefresh-io/teamleads +* @codefresh-io/teamleads @masontikhonov .github @codefresh-io/DevOps @@ -7,4 +7,4 @@ /charts/gitops-runtime/tests @codefresh-io/DevOps # gitops operator crd changes can be approved by some other people -/charts/gitops-runtime/templates/_components/gitops-operator/crds @codefresh-io/DevOps @dmaizel @eti-codefresh @chen-keinan @scme0 \ No newline at end of file +/charts/gitops-runtime/templates/_components/gitops-operator/crds @codefresh-io/DevOps @dmaizel @eti-codefresh @chen-keinan @scme0 @masontikhonov \ No newline at end of file diff --git a/installer-image/Dockerfile b/installer-image/Dockerfile index 36930ae02..84818e1a1 100644 --- a/installer-image/Dockerfile +++ b/installer-image/Dockerfile @@ -1,22 +1,17 @@ -FROM golang:1.24.6 AS go-build +# syntax=docker/dockerfile:1 +FROM octopusdeploy/dhi-golang:1.25-debian13-dev AS build +ARG TARGETARCH +ARG CF_CLI_VERSION=v1.0.1 RUN go install github.com/davidrjonas/semver-cli@latest \ - && cp $GOPATH/bin/semver-cli /usr/local/bin/ - -#bookworm-slim -FROM debian:13-slim + && cp $GOPATH/bin/semver-cli /tmp/semver-cli +ADD --unpack=true --chown=nonroot:nonroot --chmod=755 https://github.com/codefresh-io/cli-v2/releases/download/${CF_CLI_VERSION}/cf-linux-${TARGETARCH}.tar.gz /tmp/cf/ -RUN echo 'debconf debconf/frontend select Noninteractive' | debconf-set-selections -ARG CF_CLI_VERSION=v0.2.16 +# DHI source: https://hub.docker.com/repository/docker/octopusdeploy/dhi-debian-base/customizations/8106437942896324135 +FROM octopusdeploy/dhi-debian-base:trixie_cf-gitops-runtime-installer-debian13@sha256:e72836b4e4c408f04caf8ac6e34824d90e192b7cecedab9aeed647e14d0cd599 AS production ARG TARGETARCH - -RUN apt-get update && apt-get install curl jq -y -RUN curl -L --output - https://github.com/codefresh-io/cli-v2/releases/download/${CF_CLI_VERSION}/cf-linux-${TARGETARCH}.tar.gz | tar zx && mv ./cf-linux-${TARGETARCH} /usr/local/bin/cf -COPY --from=go-build /usr/local/bin/semver-cli /usr/local/bin/semver-cli - -COPY --from=bitnamilegacy/kubectl:1.33.4 /opt/bitnami/kubectl/bin/kubectl /usr/local/bin/ - -RUN useradd -m -s /bin/bash codefresh -USER codefresh +COPY --from=build --chown=nonroot:nonroot --chmod=755 /tmp/cf/cf-linux-${TARGETARCH} /usr/local/bin/cf +COPY --from=build --chown=nonroot:nonroot --chmod=755 /tmp/semver-cli /usr/local/bin/semver-cli WORKDIR /home/codefresh +USER nonroot \ No newline at end of file From eb7cd3772e927a258cd34e186b70fcaf7161d372 Mon Sep 17 00:00:00 2001 From: Bohdan Pysarenko Date: Mon, 16 Feb 2026 18:12:51 +0200 Subject: [PATCH 4/5] bump gitops-operator; runtime-installer --- charts/gitops-runtime/values.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/charts/gitops-runtime/values.yaml b/charts/gitops-runtime/values.yaml index 8026dc0a7..f8a3efcf4 100644 --- a/charts/gitops-runtime/values.yaml +++ b/charts/gitops-runtime/values.yaml @@ -646,7 +646,7 @@ gitops-operator: image: registry: quay.io repository: codefresh/codefresh-gitops-operator - tag: main-c182bdf + tag: 78571af env: !!merge <<: - *otel-config From c23cbb4d214ea777128b7c3d7dad56c7196348c3 Mon Sep 17 00:00:00 2001 From: Vasil Sudakou Date: Mon, 16 Feb 2026 20:16:54 +0300 Subject: [PATCH 5/5] bump: app-proxy and app-proxy-init --- charts/gitops-runtime/values.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/charts/gitops-runtime/values.yaml b/charts/gitops-runtime/values.yaml index f8a3efcf4..ff3fa24e3 100644 --- a/charts/gitops-runtime/values.yaml +++ b/charts/gitops-runtime/values.yaml @@ -458,14 +458,14 @@ app-proxy: tag: 1.1.22-main image: repository: quay.io/codefresh/cap-app-proxy - tag: 93121a2 + tag: fbc0485 pullPolicy: IfNotPresent # -- Extra volume mounts for main container extraVolumeMounts: [] initContainer: image: repository: quay.io/codefresh/cap-app-proxy-init - tag: 93121a2 + tag: fbc0485 pullPolicy: IfNotPresent command: - ./init.sh