fix: add script for checking unicorn multiarch images #2047
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
mjnagel
reviewed
Oct 20, 2025
mjnagel
previously approved these changes
Oct 21, 2025
mjnagel
approved these changes
Oct 21, 2025
chance-coleman
pushed a commit
that referenced
this pull request
Oct 28, 2025
🤖 I have created a release *beep* *boop* --- ## [0.55.0](v0.54.1...v0.55.0) (2025-10-28) ### Features * pod reload on configmaps and falco separated configmaps ([#2057](#2057)) ([005e0d8](005e0d8)) * uds-identity-config registry1 image ([#2045](#2045)) ([4595a9b](4595a9b)) ### Bug Fixes * add retries to all network tests ([#2066](#2066)) ([4f701d9](4f701d9)) * add retries to network tests ([#2055](#2055)) ([e301432](e301432)) * add script for checking unicorn multiarch images ([#2047](#2047)) ([22c50a7](22c50a7)) * falco disable configmap naming ([#2080](#2080)) ([4021587](4021587)) * fixed keycloak credentials recovery procedure ([#2038](#2038)) ([65747cb](65747cb)) * keycloak spi envs syntax ([#2041](#2041)) ([b4f568f](b4f568f)) * keycloak statefulset spi provider syntax ([#2030](#2030)) ([0214dec](0214dec)) * local velero crd manifests ([#2060](#2060)) ([63f95c1](63f95c1)) * remove setting --blocking-factor=64 when extracting the checkpoint image ([#2033](#2033)) ([388d6b5](388d6b5)) * renovate readiness check unicorn pepr image version ([#2062](#2062)) ([8ad67ca](8ad67ca)) * revert statefulset change ([#2037](#2037)) ([3abd38e](3abd38e)) ### Miscellaneous * add lula mappings for compliance pr ([#2034](#2034)) ([15b41b6](15b41b6)) * add/update lula mapping keycloak observability ([#2044](#2044)) ([91f4c21](91f4c21)) * bumb version references ([#2067](#2067)) ([da828f9](da828f9)) * **ci:** handle timing with pepr joining the mesh ([#2040](#2040)) ([5e93bf0](5e93bf0)) * **deps-dev:** bump vite from 7.1.5 to 7.1.11 in /test/vitest ([#2051](#2051)) ([6551c5a](6551c5a)) * **deps:** identity-config update to v0.19.1 ([#2073](#2073)) ([953d1b4](953d1b4)) * **deps:** update falco chart to v6.4.0 ([#2010](#2010)) ([02f454f](02f454f)) * **deps:** update grafana to 12.2.1 ([#2014](#2014)) ([85ab191](85ab191)) * **deps:** update istio to v1.27.3 ([#2017](#2017)) ([cc07063](cc07063)) * **deps:** update keycloak to v26.4.1 ([#2032](#2032)) ([b495d7b](b495d7b)) * **deps:** update loki to 3.5.7, nginx to 1.29.2 ([#1989](#1989)) ([7b65aa4](7b65aa4)) * **deps:** update neuvector to 5.4.7 ([#2050](#2050)) ([9ed8207](9ed8207)) * **deps:** update pepr to v0.55.4 ([#2025](#2025)) ([afa91fe](afa91fe)) * **deps:** update pepr to v0.55.5 ([#2046](#2046)) ([e2b6f95](e2b6f95)) * **deps:** update pepr to v0.55.6 ([#2054](#2054)) ([49ba35d](49ba35d)) * **deps:** update pepr to v0.55.6 ([#2058](#2058)) ([e454f59](e454f59)) * **deps:** update prometheus-stack ([#1999](#1999)) ([988955b](988955b)) * **deps:** update support-deps ([#2069](#2069)) ([948a73a](948a73a)) * **deps:** update support-deps ([#2070](#2070)) ([ad9d89e](ad9d89e)) * **deps:** update vitest v4.0.0 ([#2063](#2063)) ([8869a6c](8869a6c)) * **docs:** add new doc for guide to keycloak customization ([#2048](#2048)) ([0ac6588](0ac6588)) * **docs:** fix broken doc link ([#2077](#2077)) ([02991b6](02991b6)) * keycloak lula mappings ([#2012](#2012)) ([1d217be](1d217be)) * keycloak lula mappings ([#2036](#2036)) ([101326e](101326e)) * **test:** add private pki testing ([#2008](#2008)) ([9bb5584](9bb5584)) * uds-compliance-67-mappings ([#2024](#2024)) ([2c4eb90](2c4eb90)) ### Documentation * fix badge for k3d ha test ([#2043](#2043)) ([f98f9ee](f98f9ee)) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
mjnagel
pushed a commit
to BagelLab/uds-core
that referenced
this pull request
Nov 14, 2025
…s#2047) ## Description Dynamically grab all unicorn images, based on `quay.io/rfcurated`, create a list of those images, then iterate over those images and do a crane manifest against each image. Keep track of each image that doesn't have both an `arm64` and `amd64` published architecture. If any images don't have both architectures, `exit 1` at the end of the script. Script automatically cleans up tmp files with the `trap` functionality. <img width="980" height="1245" alt="Screenshot from 2025-10-20 10-16-45" src="https://github.com/user-attachments/assets/fe52ddf2-d8d1-4373-a4ce-9603a0558ca0" /> ## Related Issue Fixes # <!-- or --> Relates to # ## Type of change - [ ] Bug fix (non-breaking change which fixes an issue) - [ ] New feature (non-breaking change which adds functionality) - [ ] Other (security config, docs update, etc) ## Steps to Validate - If this PR introduces new functionality to UDS Core or addresses a bug, please document the steps to test the changes. ## Checklist before merging - [ ] Test, docs, adr added or updated as needed - [ ] [Contributor Guide](https://github.com/defenseunicorns/uds-template-capability/blob/main/CONTRIBUTING.md) followed
mjnagel
pushed a commit
to BagelLab/uds-core
that referenced
this pull request
Nov 14, 2025
🤖 I have created a release *beep* *boop* --- ## [0.55.0](defenseunicorns/uds-core@v0.54.1...v0.55.0) (2025-10-28) ### Features * pod reload on configmaps and falco separated configmaps ([defenseunicorns#2057](defenseunicorns#2057)) ([005e0d8](defenseunicorns@005e0d8)) * uds-identity-config registry1 image ([defenseunicorns#2045](defenseunicorns#2045)) ([4595a9b](defenseunicorns@4595a9b)) ### Bug Fixes * add retries to all network tests ([defenseunicorns#2066](defenseunicorns#2066)) ([4f701d9](defenseunicorns@4f701d9)) * add retries to network tests ([defenseunicorns#2055](defenseunicorns#2055)) ([e301432](defenseunicorns@e301432)) * add script for checking unicorn multiarch images ([defenseunicorns#2047](defenseunicorns#2047)) ([22c50a7](defenseunicorns@22c50a7)) * falco disable configmap naming ([defenseunicorns#2080](defenseunicorns#2080)) ([4021587](defenseunicorns@4021587)) * fixed keycloak credentials recovery procedure ([defenseunicorns#2038](defenseunicorns#2038)) ([65747cb](defenseunicorns@65747cb)) * keycloak spi envs syntax ([defenseunicorns#2041](defenseunicorns#2041)) ([b4f568f](defenseunicorns@b4f568f)) * keycloak statefulset spi provider syntax ([defenseunicorns#2030](defenseunicorns#2030)) ([0214dec](defenseunicorns@0214dec)) * local velero crd manifests ([defenseunicorns#2060](defenseunicorns#2060)) ([63f95c1](defenseunicorns@63f95c1)) * remove setting --blocking-factor=64 when extracting the checkpoint image ([defenseunicorns#2033](defenseunicorns#2033)) ([388d6b5](defenseunicorns@388d6b5)) * renovate readiness check unicorn pepr image version ([defenseunicorns#2062](defenseunicorns#2062)) ([8ad67ca](defenseunicorns@8ad67ca)) * revert statefulset change ([defenseunicorns#2037](defenseunicorns#2037)) ([3abd38e](defenseunicorns@3abd38e)) ### Miscellaneous * add lula mappings for compliance pr ([defenseunicorns#2034](defenseunicorns#2034)) ([15b41b6](defenseunicorns@15b41b6)) * add/update lula mapping keycloak observability ([defenseunicorns#2044](defenseunicorns#2044)) ([91f4c21](defenseunicorns@91f4c21)) * bumb version references ([defenseunicorns#2067](defenseunicorns#2067)) ([da828f9](defenseunicorns@da828f9)) * **ci:** handle timing with pepr joining the mesh ([defenseunicorns#2040](defenseunicorns#2040)) ([5e93bf0](defenseunicorns@5e93bf0)) * **deps-dev:** bump vite from 7.1.5 to 7.1.11 in /test/vitest ([defenseunicorns#2051](defenseunicorns#2051)) ([6551c5a](defenseunicorns@6551c5a)) * **deps:** identity-config update to v0.19.1 ([defenseunicorns#2073](defenseunicorns#2073)) ([953d1b4](defenseunicorns@953d1b4)) * **deps:** update falco chart to v6.4.0 ([defenseunicorns#2010](defenseunicorns#2010)) ([02f454f](defenseunicorns@02f454f)) * **deps:** update grafana to 12.2.1 ([defenseunicorns#2014](defenseunicorns#2014)) ([85ab191](defenseunicorns@85ab191)) * **deps:** update istio to v1.27.3 ([defenseunicorns#2017](defenseunicorns#2017)) ([cc07063](defenseunicorns@cc07063)) * **deps:** update keycloak to v26.4.1 ([defenseunicorns#2032](defenseunicorns#2032)) ([b495d7b](defenseunicorns@b495d7b)) * **deps:** update loki to 3.5.7, nginx to 1.29.2 ([defenseunicorns#1989](defenseunicorns#1989)) ([7b65aa4](defenseunicorns@7b65aa4)) * **deps:** update neuvector to 5.4.7 ([defenseunicorns#2050](defenseunicorns#2050)) ([9ed8207](defenseunicorns@9ed8207)) * **deps:** update pepr to v0.55.4 ([defenseunicorns#2025](defenseunicorns#2025)) ([afa91fe](defenseunicorns@afa91fe)) * **deps:** update pepr to v0.55.5 ([defenseunicorns#2046](defenseunicorns#2046)) ([e2b6f95](defenseunicorns@e2b6f95)) * **deps:** update pepr to v0.55.6 ([defenseunicorns#2054](defenseunicorns#2054)) ([49ba35d](defenseunicorns@49ba35d)) * **deps:** update pepr to v0.55.6 ([defenseunicorns#2058](defenseunicorns#2058)) ([e454f59](defenseunicorns@e454f59)) * **deps:** update prometheus-stack ([defenseunicorns#1999](defenseunicorns#1999)) ([988955b](defenseunicorns@988955b)) * **deps:** update support-deps ([defenseunicorns#2069](defenseunicorns#2069)) ([948a73a](defenseunicorns@948a73a)) * **deps:** update support-deps ([defenseunicorns#2070](defenseunicorns#2070)) ([ad9d89e](defenseunicorns@ad9d89e)) * **deps:** update vitest v4.0.0 ([defenseunicorns#2063](defenseunicorns#2063)) ([8869a6c](defenseunicorns@8869a6c)) * **docs:** add new doc for guide to keycloak customization ([defenseunicorns#2048](defenseunicorns#2048)) ([0ac6588](defenseunicorns@0ac6588)) * **docs:** fix broken doc link ([defenseunicorns#2077](defenseunicorns#2077)) ([02991b6](defenseunicorns@02991b6)) * keycloak lula mappings ([defenseunicorns#2012](defenseunicorns#2012)) ([1d217be](defenseunicorns@1d217be)) * keycloak lula mappings ([defenseunicorns#2036](defenseunicorns#2036)) ([101326e](defenseunicorns@101326e)) * **test:** add private pki testing ([defenseunicorns#2008](defenseunicorns#2008)) ([9bb5584](defenseunicorns@9bb5584)) * uds-compliance-67-mappings ([defenseunicorns#2024](defenseunicorns#2024)) ([2c4eb90](defenseunicorns@2c4eb90)) ### Documentation * fix badge for k3d ha test ([defenseunicorns#2043](defenseunicorns#2043)) ([f98f9ee](defenseunicorns@f98f9ee)) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
Dynamically grab all unicorn images, based on
quay.io/rfcurated, create a list of those images, then iterate over those images and do a crane manifest against each image. Keep track of each image that doesn't have both anarm64andamd64published architecture. If any images don't have both architectures,exit 1at the end of the script. Script automatically cleans up tmp files with thetrapfunctionality.Related Issue
Fixes #
Relates to #
Type of change
Steps to Validate
Checklist before merging