Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add to the icm schema a field to indicate if the icm should be ignored #2140

Merged
merged 1 commit into from
Jan 9, 2025

Conversation

ralphbean
Copy link
Contributor

This enables a path to deprecation.

Today, scanners depend on this file primarilly for the list of content_sets.

In the future, with konflux-ci, we want third-party scanners to refer to the dnf database for a more precise mapping of which rpms come from which content_sets.

The idea here is that image providers can still publish an icm file, but if the from_dnf_hint is set to true, then scanners are supposed to ignore the icm file and trust the dnf database instead. Scanners that haven't been ported to the new method will continue to work in the current imprecise way until they adapt to scanning the dnf database.

Maintainers will complete the following section

  • Commit messages are descriptive enough
  • Code coverage from testing does not decrease and new code is covered
  • Python type annotations added to new code
  • JSON/YAML configuration changes are updated in the relevant schema
  • Changes to metadata also update the documentation for the metadata
  • Pull request has a link to an osbs-docs PR for user documentation updates
  • New feature can be disabled from a configuration file

This enables a path to deprecation.

Today, scanners depend on this file primarilly for the list of
content_sets.

In the future, with konflux-ci, we want third-party scanners to refer to
the dnf database for a more precise mapping of which rpms come from
which content_sets.

The idea here is that image providers can still publish an icm file, but
if the from_dnf_hint is set to true, then scanners are supposed to
ignore the icm file and trust the dnf database instead. Scanners that
haven't been ported to the new method will continue to work in the
current imprecise way until they adapt to scanning the dnf database.

Signed-off-by: Ralph Bean <rbean@redhat.com>
@MartinBasti
Copy link
Contributor

#2142 fix for CI failure

@MartinBasti
Copy link
Contributor

MartinBasti commented Jan 9, 2025

I'm merging it, only coveralls report failed, test passed

@MartinBasti MartinBasti merged commit 9da75c6 into containerbuildsystem:master Jan 9, 2025
11 of 13 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants