From 794c6c4fd1432b120349a3ff3645ab12adcfd95a Mon Sep 17 00:00:00 2001
From: kaniini <kaniini@users.noreply.github.com>
Date: Sun, 10 Mar 2024 01:25:51 +0000
Subject: [PATCH] Update images digests

---
 .github/workflows/build-old.yaml   | 6 +++---
 .github/workflows/build-world.yaml | 2 +-
 .github/workflows/build.yaml       | 6 +++---
 .github/workflows/ci-build.yaml    | 8 ++++----
 .github/workflows/lint-world.yaml  | 2 +-
 Makefile                           | 4 ++--
 6 files changed, 14 insertions(+), 14 deletions(-)

diff --git a/.github/workflows/build-old.yaml b/.github/workflows/build-old.yaml
index 94eb0164d8..09c6286497 100644
--- a/.github/workflows/build-old.yaml
+++ b/.github/workflows/build-old.yaml
@@ -23,7 +23,7 @@ jobs:
       contents: read
 
     container:
-      image: ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055
+      image: ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8
       # TODO: Deprivilege
       options: |
         --cap-add NET_ADMIN --cap-add SYS_ADMIN --device /dev/fuse --security-opt seccomp=unconfined --security-opt apparmor:unconfined
@@ -136,7 +136,7 @@ jobs:
 
     container:
       # NOTE: This step only signs and uploads, so it doesn't need any privileges
-      image: ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055
+      image: ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8
 
     steps:
       - uses: actions/checkout@v4
@@ -254,7 +254,7 @@ jobs:
 
     container:
       # NOTE: This step only signs and uploads, so it doesn't need any privileges
-      image: ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055
+      image: ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8
 
     steps:
       - uses: actions/checkout@v4
diff --git a/.github/workflows/build-world.yaml b/.github/workflows/build-world.yaml
index 6932338abc..7ecf3514f9 100644
--- a/.github/workflows/build-world.yaml
+++ b/.github/workflows/build-world.yaml
@@ -24,7 +24,7 @@ jobs:
     # permissions:
 
     container:
-      image: ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055
+      image: ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8
       # TODO: Deprivilege
       options: |
         --cap-add NET_ADMIN --cap-add SYS_ADMIN --device /dev/fuse --security-opt seccomp=unconfined --security-opt apparmor:unconfined
diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
index fbe00cbab0..fb014d3f45 100644
--- a/.github/workflows/build.yaml
+++ b/.github/workflows/build.yaml
@@ -29,7 +29,7 @@ jobs:
       contents: read
 
     container:
-      image: ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055
+      image: ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8
       # TODO: Deprivilege
       options: |
         --cap-add NET_ADMIN --cap-add SYS_ADMIN --device /dev/fuse --security-opt seccomp=unconfined --security-opt apparmor:unconfined
@@ -169,7 +169,7 @@ jobs:
 
     container:
       # NOTE: This step only signs and uploads, so it doesn't need any privileges
-      image: ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055
+      image: ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8
 
     steps:
       - uses: actions/checkout@v4
@@ -287,7 +287,7 @@ jobs:
 
     container:
       # NOTE: This step only signs and uploads, so it doesn't need any privileges
-      image: ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055
+      image: ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8
 
     steps:
       - uses: actions/checkout@v4
diff --git a/.github/workflows/ci-build.yaml b/.github/workflows/ci-build.yaml
index daa3a466b2..4576f0beca 100644
--- a/.github/workflows/ci-build.yaml
+++ b/.github/workflows/ci-build.yaml
@@ -33,7 +33,7 @@ jobs:
         run: |
           # Copy wolfictl out of the wolfictl image and onto PATH
           TMP=$(mktemp -d)
-          docker run --rm -i -v $TMP:/out --entrypoint /bin/sh ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055 -c "cp /usr/bin/wolfictl /out"
+          docker run --rm -i -v $TMP:/out --entrypoint /bin/sh ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8 -c "cp /usr/bin/wolfictl /out"
           echo "$TMP" >> $GITHUB_PATH
 
       # Assuming that we have a list of changed files such as `foo.yaml` and `bar.yaml`, this
@@ -70,7 +70,7 @@ jobs:
       group: wolfi-builder-${{ matrix.arch }}
     needs: changes
     container:
-      image: ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055
+      image: ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8
       options: |
         --cap-add NET_ADMIN --cap-add SYS_ADMIN --security-opt seccomp=unconfined --security-opt apparmor:unconfined
     outputs:
@@ -193,7 +193,7 @@ jobs:
     name: "ABI Compatibility check"
     runs-on: ubuntu-latest
     container:
-      image: ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055
+      image: ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8
     needs: build
     if: needs.build.outputs.packages_were_built == 'true'
 
@@ -232,7 +232,7 @@ jobs:
     name: "Scan packages for CVEs"
     runs-on: ubuntu-latest
     container:
-      image: ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055
+      image: ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8
     needs: build
     if: needs.build.outputs.packages_were_built == 'true'
 
diff --git a/.github/workflows/lint-world.yaml b/.github/workflows/lint-world.yaml
index 486d6b5f64..b708d76015 100644
--- a/.github/workflows/lint-world.yaml
+++ b/.github/workflows/lint-world.yaml
@@ -29,7 +29,7 @@ jobs:
       group: wolfi-os-builder-${{ matrix.arch }}
 
     container:
-      image: ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055
+      image: ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8
 
     steps:
       - uses: actions/checkout@v4
diff --git a/Makefile b/Makefile
index 46d5edc6eb..48bb102e9a 100644
--- a/Makefile
+++ b/Makefile
@@ -187,7 +187,7 @@ dev-container:
 	    -v "${PWD}:${PWD}" \
 	    -w "${PWD}" \
 	    -e SOURCE_DATE_EPOCH=0 \
-	    ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055
+	    ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8
 
 PACKAGES_CONTAINER_FOLDER ?= /work/packages
 TMP_REPOSITORIES_DIR := $(shell mktemp -d)
@@ -252,6 +252,6 @@ dev-container-wolfi:
 		--mount type=bind,source="${PWD}/local-melange.rsa.pub",destination="/etc/apk/keys/local-melange.rsa.pub",readonly \
 		--mount type=bind,source="$(TMP_REPOSITORIES_FILE)",destination="/etc/apk/repositories",readonly \
 		-w "$(PACKAGES_CONTAINER_FOLDER)" \
-		ghcr.io/wolfi-dev/sdk:latest@sha256:03f19181c654d30c23627c3f20911ff08261d631f7b5ef0dbd29efdeb30e0055
+		ghcr.io/wolfi-dev/sdk:latest@sha256:1542e1bc8e3efd77401a05c8b16cab29ce459f26993a662b8b3e605d5ffae7e8
 	@rm "$(TMP_REPOSITORIES_FILE)"
 	@rmdir "$(TMP_REPOSITORIES_DIR)"