Skip to content

chore(deps): update registry.redhat.io/ubi9/ubi-minimal docker tag to v9.8-1782366411 #235

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
openshift-merge-bot merged 1 commit into from
Jun 25, 2026
+1 −1
Merged

chore(deps): update registry.redhat.io/ubi9/ubi-minimal docker tag to v9.8-1782366411 #235

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,7 @@ RUN CGO_ENABLED=1 GOOS=${TARGETOS:-linux} GOARCH=${TARGETARCH} go build -a -tags
RUN go build -o check-isa-level ./cmd/check-isa-level && ./check-isa-level ./manager


FROM registry.redhat.io/ubi9/ubi-minimal:9.8-1782191395
FROM registry.redhat.io/ubi9/ubi-minimal:9.8-1782366411

@coderabbitai coderabbitai Bot Jun 25, 2026

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔒 Security & Privacy | 🟠 Major | ⚡ Quick win

Use a floating Red Hat tag for the runtime base image.

Line 32 pins UBI to a specific build tag, but this repo’s container policy requires floating tags for Red Hat images. Switch to a floating UBI-minimal tag per policy.

As per path instructions: “Red Hat images: use floating tags (Red Hat manages updates)”.

🤖 Prompt for AI Agents 
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@Dockerfile` at line 32, The runtime base image is pinned to a specific
UBI-minimal build tag, which conflicts with the container policy for Red Hat
images. Update the FROM instruction in the Dockerfile to use a floating
registry.redhat.io/ubi9/ubi-minimal tag instead of the exact versioned tag,
keeping the change limited to the base image reference.

Source: Path instructions


WORKDIR /
COPY --from=builder /workspace/manager .
Expand Down