Skip to content

fix(BuildStrategy): follow shp-output-insecure properly with buildpacks#2238

Open
sgaist wants to merge 1 commit into
shipwright-io:mainfrom
idiap:fix/buildpack-buildstrategy-follow-shp-output-insecure-correctly
Open

fix(BuildStrategy): follow shp-output-insecure properly with buildpacks#2238
sgaist wants to merge 1 commit into
shipwright-io:mainfrom
idiap:fix/buildpack-buildstrategy-follow-shp-output-insecure-correctly

Conversation

@sgaist

@sgaist sgaist commented Jun 22, 2026

Copy link
Copy Markdown
Contributor

Changes

The current implementation has one flaw: it creates the CNB_INSECURE_REGISTRIES environment variable in all cases which should not happen when shp-output-insecure is set to false.

Hence move that part under the PARAM_OUTPUT_INSECURE check.

Related Issue

Fixes #2237

Type of PR

/kind bug

Submitter Checklist

  • Includes tests if functionality changed/was added
  • Includes docs if changes are user-facing
  • Kind label has been set
  • Release notes block has been filled in, or marked NONE

See the contributor guide
for details on coding conventions, github and prow interactions, and the code review process.

Release Notes

Fixed buildpacks-v3 BuildStrategy examples: they now properly follow the `shp-output-insecure` configuration.

@openshift-ci openshift-ci Bot added kind/bug Categorizes issue or PR as related to a bug. release-note Label for when a PR has specified a release note labels Jun 22, 2026
@pull-request-size pull-request-size Bot added the size/M Denotes a PR that changes 30-99 lines, ignoring generated files. label Jun 22, 2026
@openshift-ci openshift-ci Bot requested review from adambkaplan and karanibm6 June 22, 2026 14:27
@openshift-ci

openshift-ci Bot commented Jun 22, 2026

Copy link
Copy Markdown
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign heavywombat for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@sgaist
fix(BuildStrategy): follow shp-output-insecure properly with buildpacks
943ac31 
The current implementation has one flaw: it creates the
CNB_INSECURE_REGISTRIES environment variable in all cases
which should not happen when `shp-output-insecure` is set
to false.

Hence move that part under the PARAM_OUTPUT_INSECURE check.

Signed-off-by: Samuel Gaist <samuel.gaist@idiap.ch>
@sgaist sgaist force-pushed the fix/buildpack-buildstrategy-follow-shp-output-insecure-correctly branch from 9d517b4 to 943ac31 Compare June 22, 2026 14:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@adambkaplan adambkaplan Awaiting requested review from adambkaplan
@karanibm6 karanibm6 Awaiting requested review from karanibm6

Assignees

No one assigned

Labels

kind/bug Categorizes issue or PR as related to a bug. release-note Label for when a PR has specified a release note size/M Denotes a PR that changes 30-99 lines, ignoring generated files.

Projects

Issues
Status: No status

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[BUG] Buildpacks BuildStrategy does not follow shp-output-insecure properly

2 participants

@sgaist @shipwright-ci-bot