diff --git a/Dockerfile b/Dockerfile index 6f7f339d010120342bd991f21b74fc5af236c2a3..05be879fca0098b37d0bc4f6b46dbeb828397c53 100644 --- a/Dockerfile +++ b/Dockerfile @@ -2,7 +2,7 @@ ARG BASE_REGISTRY=registry1.dso.mil ARG BASE_IMAGE=ironbank/opensource/nodejs/nodejs14 ARG BASE_TAG=14.17.0 -FROM renovate/renovate:25.41.0 as builder +FROM renovate/renovate:25.41.1 as builder FROM ${BASE_REGISTRY}/${BASE_IMAGE}:${BASE_TAG} diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index b24a7906bf621db71c034e088c2d2bfee07817d7..503d722fdae6b463a8ec7fbd776f0cf05ffbea98 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -8,7 +8,7 @@ name: "container-hardening-tools/renovate/renovate" # The most specific version should be the first tag and will be shown # on ironbank.dsop.io tags: -- "25.41.0" +- "25.41.1" - "latest" # Build args passed to Dockerfile ARGs @@ -27,7 +27,7 @@ labels: org.opencontainers.image.url: "https://github.com/renovatebot/renovate" ## Name of the distributing entity, organization or individual org.opencontainers.image.vendor: "WhiteSource" - org.opencontainers.image.version: "25.41.0" + org.opencontainers.image.version: "25.41.1" ## Keywords to help with search (ex. "cicd,gitops,golang") mil.dso.ironbank.image.keywords: "automation,dependency,updates" ## This value can be "opensource" or "commercial" @@ -37,23 +37,23 @@ labels: # List of resources to make available to the offline build context resources: -- tag: renovate/renovate:25.41.0 - url: docker://docker.io/renovate/renovate@sha256:c6d78db36621da9ab120fdb19d1d949b4c04132439da6845d2f489bc78c61003 +- tag: renovate/renovate:25.41.1 + url: docker://docker.io/renovate/renovate@sha256:88e6ede9723330079a0eb21974c94316a3b5ca9f75d43bdeceea502b691ce6cf - filename: helm-docs.tar.gz url: https://github.com/norwoodj/helm-docs/releases/download/v1.5.0/helm-docs_1.5.0_Linux_x86_64.tar.gz validation: type: sha256 value: a352e13a8438045b8ed138b821cb757c177acd999c1af77345152d7a64b0ddb7 - filename: yq - url: https://github.com/mikefarah/yq/releases/download/v4.6.2/yq_linux_amd64 + url: https://github.com/mikefarah/yq/releases/download/v4.9.6/yq_linux_amd64 validation: type: sha256 - value: ddc532d3ecace34e30fcfd0a623d539f9cb013ea555e7e63733c208a30a0fd66 + value: a1cfa39a9538e27f11066aa5659b32f9beae1eea93369d395bf45bcfc8a181dc - filename: kpt.tar.gz - url: https://github.com/GoogleContainerTools/kpt/releases/download/v0.38.1/kpt_linux_amd64-0.38.1.tar.gz + url: https://github.com/GoogleContainerTools/kpt/releases/download/v0.39.3/kpt_linux_amd64-0.39.3.tar.gz validation: type: sha256 - value: e2f6d3b1558f103d2ede455b3c6335631f02e865929a02dc56a89d52684fc652 + value: 21fcf6f806cf848422227a88ec96f6f650f9c74a66c4107848cbce11c5944def # List of project maintainers maintainers: diff --git a/lib/manager/ironbank/__fixtures__/hardening_manifest.yaml b/lib/manager/ironbank/__fixtures__/hardening_manifest.yaml index 41cec99a7c049ebae1d98228668343c06649b3f6..7f6911ee4e717dd02f1366716bccf3225b7d955e 100644 --- a/lib/manager/ironbank/__fixtures__/hardening_manifest.yaml +++ b/lib/manager/ironbank/__fixtures__/hardening_manifest.yaml @@ -1,16 +1,16 @@ resources: - url: "docker://docker.io/jboss/keycloak@sha256:e2a216ff6dc3f9ba88d77132c930f8e15dd50ebca1ead6e21696f61b22f0ee10" tag: "jboss/keycloak:13.0.1" - - url: "https://github.com/etcd-io/etcd/releases/download/v3.4.8/etcd-v3.4.8-linux-amd64.tar.gz" + - url: "https://github.com/etcd-io/etcd/releases/download/v3.4.16/etcd-v3.4.16-linux-amd64.tar.gz" filename: etcd.tar.gz validation: type: sha256 - value: a3a332a68fe8dedf20149c1a4b8746fe8061b72d75d3a5850b17e04de9ed7942 - - url: "https://github.com/fluent/fluentd/archive/v1.10.3.tar.gz" + value: 2e2d5b3572e077e7641193ed07b4929b0eaf0dc2f9463e9b677765528acafb89 + - url: "https://github.com/fluent/fluentd/archive/v1.13.0.tar.gz" filename: fluentd.tar.gz validation: type: sha256 - value: c2b5bbb6c2236f73310b22c748e32a88f25288f3e6e1bd272f3dccc6a2322160 + value: fd990a6f97318db6b987529aab8b559508c146021208ba600dad0685fd102051 - filename: urllib3-1.25.10-py2.py3-none-any.whl url: https://files.pythonhosted.org/packages/9f/f0/a391d1463ebb1b233795cabfc0ef38d3db4442339de68f847026199e69d7/urllib3-1.25.10-py2.py3-none-any.whl validation: