-
Notifications
You must be signed in to change notification settings - Fork 59
Update docker.io/library/golang Docker tag to v1.26.4 (main) #3366
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. Weβll occasionally send you account related emails.
Already on GitHub? Sign in to your account
base: main
Are you sure you want to change the base?
Changes from all commits
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -16,7 +16,7 @@ | |
|
|
||
| ## Build | ||
|
|
||
| FROM docker.io/library/golang:1.26.3 AS build | ||
| FROM docker.io/library/golang:1.26.4 AS build | ||
|
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. [high] protected-path This PR modifies Dockerfile, which is a protected governance/infrastructure file requiring human approval. The PR has no linked issue providing authorization for this change. While the change is a mechanical Renovate patch version bump (golang 1.26.3 β 1.26.4), protected-path changes require explicit justification via a linked issue regardless of scope. Suggested fix: Ensure a human reviewer with appropriate permissions approves this protected-path change. For future automated dependency updates to protected files, consider linking a standing issue or policy that authorizes routine patch bumps. There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. [high] protected-path Dockerfile is a protected infrastructure file requiring human approval. This PR modifies it but has no linked issue providing explicit authorization for the change. While the PR is authored by renovate[bot] and renovate.json is configured for this repository (indicating this is an expected automated dependency update of golang from 1.26.3 to 1.26.4), protected-path changes always require human review and approval regardless of automation source. Suggested fix: A human maintainer must review and approve this Dockerfile change. |
||
|
|
||
| ARG TARGETOS | ||
| ARG TARGETARCH | ||
|
|
||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
[high] protected-path
This PR modifies Dockerfile, which is a protected path requiring human approval. The PR has no linked issue providing authorization for this change. While the Renovate bot description explains the version bump (golang 1.26.3 to 1.26.4) and the change itself is a routine patch update with no correctness or security concerns, protected-path changes without a linked issue require explicit human approval for traceability.
Suggested fix: A maintainer should explicitly approve this protected-path change, or link an authorizing issue to the PR.