#buildah — Public Fediverse posts

Replacing Kaniko with Buildah in a Tekton Pipeline worked like a charm...

#Kubernetes #CICD #Tekton #Pipelines #Kaniko #Buildah

Replacing Kaniko with Buildah in a Tekton Pipeline worked like a charm...

#Kubernetes #CICD #Tekton #Pipelines #Kaniko #Buildah

Replacing Kaniko with Buildah in a Tekton Pipeline worked like a charm...

#Kubernetes #CICD #Tekton #Pipelines #Kaniko #Buildah

Replacing Kaniko with Buildah in a Tekton Pipeline worked like a charm...

#Kubernetes #CICD #Tekton #Pipelines #Kaniko #Buildah

Replacing Kaniko with Buildah in a Tekton Pipeline worked like a charm...

#Kubernetes #CICD #Tekton #Pipelines #Kaniko #Buildah

What are you using at the moment for running containers?

#containers #sysadmin #homelab #podman #docker #buildah #lxc #containerd #devops #devsecops

#BSI WID-SEC-2025-0253: [NEU] [hoch] #Red #Hat #Enterprise #Linux (#Podman #und #Buildah): Schwachstelle ermöglicht Manipulation von Dateien

Ein lokaler Angreifer kann eine Schwachstelle in Red Hat Enterprise Linux ausnutzen, um Dateien zu manipulieren.

https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0253

Looks like #kaniko is unmaintained. Bad to see as it was my first stop https://github.com/GoogleContainerTools/kaniko/issues/3348
probably taking a look at #buildah or #Nix to do the job in the future

So nope, #skopeo doesn’t seem to support multi-arch manifest generation. Too bad, a really great tool otherwise. Had to resort to #buildah which works right out of the box in a GitHub action.

Easy peasy container squeezy 😎

That was the biggest hurdle to #Infix little AppStore! Onwards and upwards 😊

I completed the first draft of my first blog post ever for my personal gooseandquill.blog! It's a tutorial that covers setting up rootless #podman on #GuixSystem then writing and building your first #guile package to produce a container image runnable on Podman and #kubernetes. I'm looking for beta readers!

Because I run #OpenShift at home, I plan to launch my blog with a little overengineered fun courtesy of #shipwright! It uses #buildah and #tekton under the hood.

If I can get this image built and running correctly, I might try next to build Freeswitch on Alpine so the final image can be much smaller. Signalwire doesn't give any info on running Freeswitch on anything other than Debian. So I'll be leaning heavily on the work done by Arch users who have Freeswitch running properly in an AUR package.

#freeswitch #alpine #arch #docker #buildah #OCI

Signalwire is a weird company. They write open source software, but some of their operational choices doesn't feel very open. They have official Docker images on Docker Hub, but none of them are Freeswitch. And the only official way to install Freeswitch is with a repo that requires a Signalwire account.

So I'm finishing up a thing I said I would do, and I'm building a Freeswitch image today. Writing a Dockerfile really makes me wish docker and buildah would let me instead point the container at an Ansible playbook (or whichever config manager) instead of writing a bunch of shell commands.

#docker #buildah #OCI #freeswitch #signalwire #contianers #VOIP

@dragnucs Difficult and embarassing topic.
I wrote prototypes for Terraform Providers for #podman, #buildah and #kaniko IIRC.
ALL of them are horrible at caching layers - let alone remote exec.
The only descend approach which supports caching seems to be #buildx + #buildkit. And yes, I have a prototype implementation for that as well.
We are still not testing this though, since hosting a Buildkit Remote Builder on GKE is a nightmare.
Let alone error handling in both buildx and buildkit is BAD.