Skip to content

image sha changed for kong:3.9.0 #14433

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
medyagh opened this issue Apr 24, 2025 · 4 comments
Open

image sha changed for kong:3.9.0 #14433

medyagh opened this issue Apr 24, 2025 · 4 comments
Labels
pending author feedback Waiting for the issue author to get back to a maintainer with findings, more details, etc... stale

Comments

@medyagh
Copy link

medyagh commented Apr 24, 2025
edited by chobits
Loading

hello I see that the image sha for kong has changed,
this breaks tools like minikube that verify the image sha

https://github.com/kubernetes/minikube/pull/20384/files

the sha changed from
kong:3.9.0@sha256:f0c19931763dccac7f927e205c98e656eb0c106a44f86d4c56e1355055627443",
"kong:3.9.0@sha256:cf2acb894c59d3787ba073d3af28e324ff8676767e14f0d76a0aa62bbb88f9d6"

is there a valid reason for this ? could there be a mechanism/automation to prevent this from happening in the future?
@Oyami-Srk
Copy link
Member

Hi medyagh,
I think the discussion has explained the reason for the sha256 change: #14261
Could you take a look?

@medyagh
Copy link
Author

medyagh commented May 8, 2025
edited
Loading

Thanks for linking the older issue, I missed that, I see it has been labeled as "Wont Fix"
Ideally the image SHAs should NOT change once they are published, thats the whole point of using a SHA, if a SHA of an image is changed that is considered a New Image (must get a new TAG) or it must be considered as compromised, can we make sure this doesnt happen in the future ?

@Oyami-Srk
Copy link
Member

I think this is a fix of incorrect image. SHA change isn't likely to happend but there is no guarantee about that.

@chronolaw chronolaw added the pending author feedback Waiting for the issue author to get back to a maintainer with findings, more details, etc... label May 21, 2025
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jun 5, 2025

This issue is marked as stale because it has been open for 14 days with no activity.

@github-actions github-actions bot added the stale label Jun 5, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
pending author feedback Waiting for the issue author to get back to a maintainer with findings, more details, etc... stale
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@chronolaw @medyagh @Oyami-Srk