Conversation
Co-authored-by: Matt Boersma <Matt.Boersma@microsoft.com>
access_cfg_file defaults to `$HOME/.oci/config` access_cfg_file_account defaults to `DEFAULT` more details https://developer.hashicorp.com/packer/integrations/hashicorp/oracle/latest/components/builder/oci#authentication-parameters
Update docs for image-builder v0.1.47
…s-datasource-recursion Fix infinite recursion in `DataSourceEc2KubernetesLocal`
…elet Remove trailing newline from Windows kubelet service definition
…car-disable-usb feat: flatcar disable usb
…e-to-oci Add access_cfg_file and access_cfg_file_account for token auth
The flag public_ip_sku by default is set to Standard by default, but if virtual_network_name is specified, public_ip_sku cannot be specified. So it is better to not specify it.
…-builds Skip OVA rockylinux-8 and photon-5 builds in CI
Signed-off-by: Andrea Mazzotti <andrea.mazzotti@suse.com>
for ubuntu 22
feat(outscale): update base image
…aseimage feat(outscale): update ubuntu-2404 base image
…elet-flag Remove --pod-infra-container-image default argument
Require promotion approval in Azure image pipeline
…nsible-scp-args nutanix: pass ansible scp extra args to provisioner
Signed-off-by: Mathieu Grzybek <github@grzybek.fr>
Co-authored-by: Andreas Sommer <andreas.sommer87@googlemail.com>
…munity Pin ansible community.general before 12.0.0
These are only available to Ansible because the templates pass them in via ansible_common_vars. Set defaults so this role doesn't depend on the specifics of the build pipeline.
Bump ansible to v2.16.18
* Refactor Azure GH workflow smoke test * Check containerd version in goss tests * Use mktemp and reduce timeout * Fail on kubeadm init --dry-run failures * Add northcentralus to replicated regions default * De-duplicate replicated regions * Default build region to northcentralus * Prepend comprehensive PATH to help find containerd w/ goss test
…efaults set default ubuntu repos for setup role
* Bump ansible to v2.18.15 * Replace ansible.builtin.yum with ansible.builtin.dnf The yum module is deprecated in ansible-core 2.18 and redirects to dnf. Use ansible.builtin.dnf directly to fix fqcn[action-core] lint errors.
* Fix jinja[spacing] ansible-lint violations * Fix name[play] ansible-lint violations * Fix name[missing] ansible-lint violations
* Fix command-instead-of-shell ansible-lint violations * Fix package-latest ansible-lint violations * Fix command-instead-of-module ansible-lint violations in debian.yml Replace sed commands with ansible.builtin.replace module for nullboot post-install script modifications. The remaining command-instead-of-module violations cannot be safely converted to Ansible modules (yum clean all has no module equivalent, and sed with shell globs requires structural changes). * Fix name[template] ansible-lint violation in crictl-url.yml Move Jinja template to end of task name to satisfy the name[template] rule. * Fix schema[tasks] ansible-lint violations for become_method Use fully qualified become_method: ansible.builtin.runas instead of the short form become_method: runas.
…licated-region Add westus2 to default replicated regions for Azure SIG images
…-sigs#1981) * Migrate bare ansible_* facts to ansible_facts[] dict form Set inject_facts_as_vars=False in ansible.cfg and convert all bare ansible_* fact references (e.g. ansible_os_family) to the dict form (ansible_facts['os_family']) across playbooks, roles, and templates. This eliminates the INJECT_FACTS_AS_VARS deprecation warnings emitted by ansible-core >=2.18. The current default (True) will flip to False in ansible-core 2.24, so this change future-proofs the codebase. The Flatcar OS-family override tasks retain bare ansible_os_family as the set_fact key, which Ansible syncs back into ansible_facts. * Fix yaml line-length lint violations from facts migration Wrap long when-conditions and a checksum URL that exceeded the 160 character limit after the ansible_* to ansible_facts[] conversion. * Fix bare 'services' variable from service_facts in debian.yml With inject_facts_as_vars=False, the ansible.builtin.service_facts module no longer injects bare 'services' into the namespace. Use ansible_facts.services instead.
Pin all third-party GitHub Actions in build-azure-sig.yaml to their commit SHAs to comply with the Kubernetes org policy requiring pinned actions. The version tag is preserved as a trailing comment for readability. Add a dependabot.yml configuration to keep the pinned actions up to date automatically via weekly grouped pull requests.
…ons-to-sha Pin GitHub Actions to SHAs and add dependabot config
Bumps the all-github-actions group with 5 updates: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `4.3.1` | `6.0.2` | | [azure/login](https://github.com/azure/login) | `2.3.0` | `3.0.0` | | [actions/setup-python](https://github.com/actions/setup-python) | `5.6.0` | `6.2.0` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4.6.2` | `7.0.1` | | [actions/download-artifact](https://github.com/actions/download-artifact) | `4.3.0` | `8.0.1` | Updates `actions/checkout` from 4.3.1 to 6.0.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@34e1148...de0fac2) Updates `azure/login` from 2.3.0 to 3.0.0 - [Release notes](https://github.com/azure/login/releases) - [Commits](Azure/login@a457da9...532459e) Updates `actions/setup-python` from 5.6.0 to 6.2.0 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](actions/setup-python@a26af69...a309ff8) Updates `actions/upload-artifact` from 4.6.2 to 7.0.1 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@ea165f8...043fb46) Updates `actions/download-artifact` from 4.3.0 to 8.0.1 - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@d3f86a1...3e5f45b) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-github-actions - dependency-name: azure/login dependency-version: 3.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-github-actions - dependency-name: actions/setup-python dependency-version: 6.2.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-github-actions - dependency-name: actions/upload-artifact dependency-version: 7.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-github-actions - dependency-name: actions/download-artifact dependency-version: 8.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-github-actions ... Signed-off-by: dependabot[bot] <support@github.com>
…ot/github_actions/all-github-actions-0a27a6f953 dependabot(deps): bump the all-github-actions group with 5 updates
Update pause image version to support windows 2025
Flatcar Stable 4593.2.0+ ships without /etc/sysctl.d/ pre-created (part of the broader filesystem reshuffle in that release). The node role's 'Set and persist kernel params' task writes to /etc/sysctl.d/99-sysctl.conf via ansible.posix.sysctl, which uses mkstemp in the parent directory and fails with FileNotFoundError when the directory is missing. Add a file task in the setup role's flatcar.yml to ensure the directory exists before any sysctl tasks run.
Flatcar Stable 4593.2.0 increased baseline partition sizes (/boot to 1 GB, both /usr partitions to 2 GB, /oem to 1 GB), which pushes the source AMI snapshot above the global default volume_size of 8 GB defined in packer/ami/packer.json. EC2 rejects launch with: InvalidBlockDeviceMapping: Volume of size 8GB is smaller than snapshot, expect size >= 13GB Override volume_size to 15 in the Flatcar AMI configs so the launch instance has headroom for the new layout.
…mi-volume-size fix: bump Flatcar AMI volume_size to 15 GB for 4593.2.0+ partition layout
…reate-sysctl-dir fix: create /etc/sysctl.d/ for Flatcar before sysctl tasks run
…rogress_timeout for containerd. Defaults to containerd defaults
…meout feat(containerd): adding ability to override the default image_pull_progress_timeout for containerd. Defaults to 5m
…oudbuild chore(ci): updating the cloudbuild gcb-docker-gcloud image to the latest release
chi-quita-a
reviewed
May 7, 2026
chi-quita-a
left a comment
chi-quita-a
left a comment
There was a problem hiding this comment.
Is it suppose to be so many commits merged to main?
Author
It will be squashed, this is just rebase diff basically |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
20 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Change description
Related issues
Additional context