Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(ci): fallback to previous release when attempting unreleased version #1568

Merged
merged 2 commits into from
Jul 12, 2024
Merged

fix(ci): fallback to previous release when attempting unreleased version #1568

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
01bcb09
fix(ci): fallback to previous release when attempting unreleased version
RTann Jul 12, 2024
276e3a8
use flag long-names
RTann Jul 12, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
35 changes: 28 additions & 7 deletions scripts/ci/jobs/diff-dumps.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -111,22 +111,43 @@ upload_offline_dump() {
info "Uploading offline dump"

cd /tmp/offline-dump
cmd=()
if is_in_PR_context; then
cmd+=(echo "Would do")
fi

curl --silent --show-error --max-time 60 --retry 3 --create-dirs -o out/RELEASE_VERSION.txt https://raw.githubusercontent.com/stackrox/stackrox/master/scanner/updater/version/RELEASE_VERSION
version_file="out/RELEASE_VERSION.txt"
# Use grep to extract X.Y versions, sort them, and get the last one as the latest
latest_version=$(grep -oE '^[0-9]+\.[0-9]+' "$version_file" | sort -V | tail -n 1)

latest_version=""
# Get the latest X.Y version which has been released.
while read -r version; do
status_code=$(curl --silent --max-time 60 --retry 3 --write-out "%{http_code}" -o /dev/null "https://github.com/stackrox/stackrox/releases/tag/$version.0")
if [[ "$status_code" == "404" ]]; then
# Release was not cut, so try a previous release.
continue
elif [[ "$status_code" == "200" ]]; then
# Release was cut, so use this one.
latest_version="$version"
break
else
# Some other error occurred.
>&2 echo "received status code $status_code when fetching StackRox releases"
exit 1
fi
done < <(grep -oE '^[0-9]+\.[0-9]+' "$version_file" | sort --reverse --unique --version-sort)
if [[ -z "$latest_version" ]]; then
>&2 echo "programmer error: latest_version unset..."
exit 1
fi

file_to_check="scanner-v4-defs-${latest_version}.zip"

curl --silent --show-error --fail --max-time 60 --retry 3 -o $file_to_check https://definitions.stackrox.io/v4/offline-bundles/$file_to_check
curl --silent --show-error --fail --max-time 60 --retry 3 -o "$file_to_check" "https://definitions.stackrox.io/v4/offline-bundles/$file_to_check"
unzip -l "$file_to_check"
zip scanner-vuln-updates.zip "$file_to_check"
echo "$file_to_check added to scanner-vuln-updates.zip"

cmd=()
if is_in_PR_context; then
cmd+=(echo "Would do")
fi
"${cmd[@]}" gsutil cp scanner-vuln-updates.zip gs://scanner-support-public/offline/v1/scanner-vuln-updates.zip
}

Expand Down
Loading