Always pull the container image #272
Draft
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Yes, we could query the registry client and compare the digest of the local manifest and the remote manifest. But that is more complicated than just letting Docker do that for us. It's also relatively quick (compared with overall Dependabot execution) when no newer image is available: Fresh pull: ``` $ time docker pull docker.io/library/alpine:latest latest: Pulling from library/alpine 4abcf2066143: Pull complete Digest: sha256:c5b1261d6d3e43071626931fc004f70149baeba2c8ec672bd4f27761f8e1ad6b Status: Downloaded newer image for alpine:latest docker.io/library/alpine:latest ________________________________________________________ Executed in 2.10 secs fish external usr time 1.21 millis 0.00 micros 1.21 millis sys time 16.02 millis 203.00 micros 15.82 millis ``` Cached pull: ``` time docker pull docker.io/library/alpine:latest latest: Pulling from library/alpine Digest: sha256:c5b1261d6d3e43071626931fc004f70149baeba2c8ec672bd4f27761f8e1ad6b Status: Image is up to date for alpine:latest docker.io/library/alpine:latest ________________________________________________________ Executed in 894.23 millis fish external usr time 1.22 millis 0.00 micros 1.22 millis sys time 14.08 millis 240.00 micros 13.84 millis ```
JamieMagee
commented
Feb 8, 2024
Comment on lines
-467
to
-473
| var inspect types.ImageInspect | ||
|
|
||
| // check if image exists locally | ||
| inspect, _, err := cli.ImageInspectWithRaw(ctx, image) | ||
|
|
||
| // pull image if necessary | ||
| if err != nil { |
There was a problem hiding this comment.
This diff is horrible, but I essentially removed these 3 lines and decreased the indentation below.
|
I just tested this locally, since I build local ARM versions I'd have to remember to add |
|
No, that's going to add too much complexity IMO. I'll have to do:
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Yes, we could query the registry client and compare the digest of the local manifest and the remote manifest. But that is more complicated than just letting Docker do that for us. It's also relatively quick (compared with overall Dependabot execution) when no newer image is available:
Fresh pull:
Cached pull: