Kaniko v1.27.0 is out!
And like a camel it comes with two new mount-options. You can now use cache & secret mounts as you would in other builders:
0hlov3RUN --mount=type=secret,id=netrc,target=/root/.netrc \
--mount=type=cache,target=/root/.cache/uv \
uv pip install -r requirements.txt
Find this and more QoL improvements in our latest release notes: https://github.com/osscontainertools/kaniko/releases/tag/v1.27.0
#kaniko fork call for new maintainers :)
If you are interested checkout https://github.com/osscontainertools/kaniko/discussions/304
#golang #cicd #foss #opensource #maintenance #fork #keepalive
Hi everyone 👋 As many of you know, the original Kaniko project, developed and maintained by Google, has unfortunately been archived. To keep Kaniko alive, for myself and others, I started this comm...
@moehrenfeld Hey did you consider using Podman? I was just discovering #Kaniko when that project was declared abandoned.
#Podman is the #Docker I always wanted and I have just set up a CI pipeline building images with Podman with #GitLab's default runners without special privileges.
See here for current MR with relevant changes:
https://floss.social/@coocook/115286756593455425
Hey developers! I’ve been working on a new CI setup to build Docker images for every push. What would you expect from such a setup? We’ll have a container registry for runtime/development each, with tags for every branch and for #Perl version (latest vs oldest supported). Read the new README section: https://gitlab.com/coocook/coocook/-/blob/dist-docker/README.md?ref_type=heads#run-with-dockerpodman Feel free to reply here or at the MR: https://gitlab.com/coocook/coocook/-/merge_requests/262 The MR also contains more specific review questions. #Docker #Podman #Gitlab #CICD #GitLabCI #FOSS
So I've migrated a container build pipeline from (deprecated) #Kaniko to (shiny new) #BuildKit after reading documentation from #Gitlab on how to integrate image building in Gitlab CI/CD. Turns out the whole thing doesn't work without enabling privileged mode on the Gitlab runner. Judging from the discussion around the issue there is no tool except Kaniko that works without some sort of extended privileges.
Google's discontinuation of #Kaniko will hopefully pave the way for better container image build tools. These have been around for quite a while, but integration into common platforms only worked flawlessly 99% of the way.
I explained the reasons in my #ContainerDays talk last year:
https://speakerdeck.com/f30/unprivileged-image-builds-what-are-the-challenges-and-where-are-we-today
https://youtu.be/62p6v_A4KTM
Chainguard already announced its fork of Kaniko:
https://github.com/chainguard-dev/kaniko
I hope we'll see longstanding issues resolved as well as hurdles for other tools removed.
Glad to see #kaniko is not dead yet...
https://www.chainguard.dev/unchained/fork-yeah-were-bringing-kaniko-back
6543
Daniel Böhmer
Sebastian
Denny
Dawid
M. Hamzah Khan
Felix Dreissig
Aaron Goldenthal
Drikanis