Skip to content

Update docker images (release-v0.7)#3377

Open
red-hat-konflux[bot] wants to merge 1 commit into
release-v0.7from
konflux/mintmaker/release-v0.7-release-v0.7/docker-images
Open

Update docker images (release-v0.7)#3377
red-hat-konflux[bot] wants to merge 1 commit into
release-v0.7from
konflux/mintmaker/release-v0.7-release-v0.7/docker-images

Conversation

@red-hat-konflux

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Type Update Change
registry.access.redhat.com/ubi9/ubi-minimal final digest 5b74fce463cae3

Warning

Some dependencies could not be looked up. Check the warning logs for more information.


Configuration

📅 Schedule: (UTC)

  • Branch creation
    • Between 12:00 AM and 03:59 AM (* 0-3 * * *)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

To execute skipped test pipelines write comment /ok-to-test.


Documentation

Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.

Signed-off-by: red-hat-konflux <126015336+red-hat-konflux[bot]@users.noreply.github.com>
@fullsend-ai-review

fullsend-ai-review Bot commented Jul 2, 2026

Copy link
Copy Markdown

🤖 Finished Review · ✅ Success · Started 2:04 AM UTC · Completed 2:11 AM UTC
Commit: 47d3320 · View workflow run →

@codecov

codecov Bot commented Jul 2, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.

Flag Coverage Δ
generative 69.55% <ø> (ø)
integration 69.55% <ø> (ø)
unit 69.55% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@fullsend-ai-review

Copy link
Copy Markdown

Review

Findings

High

  • [protected-path] Dockerfile, Dockerfile.dist — Both Dockerfiles are protected infrastructure files that require human approval. This PR has no linked issue providing explicit authorization for modifying these files. While the change is a mechanical Renovate bot digest bump (UBI9 minimal 5b74fce463cae3) and the repository's renovate.json implicitly authorizes this update pattern, protected-path changes always require human review regardless of automation source.
    Remediation: A human maintainer should review and approve this PR. No code changes are needed — the digest update itself is correct and consistent across both Dockerfiles.

Labels: PR modifies Dockerfiles with a dependency digest update

@fullsend-ai-review fullsend-ai-review Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

See the review comment for full details.

Comment thread Dockerfile
## Final image

FROM registry.access.redhat.com/ubi9/ubi-minimal:latest@sha256:5b74fce9d6e629942a0c6dc0f546c193e70d7f974d999a48c948c53dd3d36362
FROM registry.access.redhat.com/ubi9/ubi-minimal:latest@sha256:463cae32c6f6f5594b11a5c22de275016bd8545ce58a6373388e8b24f13fc15c

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[high] protected-path

Dockerfile and Dockerfile.dist are protected infrastructure files. This PR modifies both but has no linked issue providing explicit authorization. The change is a mechanical Renovate bot digest bump for registry.access.redhat.com/ubi9/ubi-minimal (sha256:5b74fce → sha256:463cae3) and the repository's renovate.json implicitly authorizes this pattern, but human approval is always required for protected-path changes.

Suggested fix: A human maintainer should review and approve this PR. No code changes are needed — the digest update is correct and consistent across both Dockerfiles.

@fullsend-ai-review fullsend-ai-review Bot added docker Pull requests that update Docker code dependencies Pull requests that update a dependency file labels Jul 2, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file docker Pull requests that update Docker code release-v0.7 renovate size: XS

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants