Skip to content

fix: backport dogfood CI fixes to release/2.29#24245

Merged
f0ssel merged 2 commits intorelease/2.29from
cherry-pick/remove-trivy-release-2.29
Apr 10, 2026
Merged

fix: backport dogfood CI fixes to release/2.29#24245
f0ssel merged 2 commits intorelease/2.29from
cherry-pick/remove-trivy-release-2.29

Conversation

@f0ssel
Copy link
Copy Markdown
Member

@f0ssel f0ssel commented Apr 10, 2026
edited
Loading

Cherry-picks two fixes onto release/2.29 that are both needed together to unblock CI:

  1. Remove trivy from Dockerfile (original: chore: evict trivy from the dogfood Dockerfile #23367, commit 4c9041b2) — upstream Trivy v0.41.0 release artifact was deleted, causing gzip: stdin: not in gzip format in the build_image job.
  2. Remove subdomain from coder_app with command (original: fix(dogfood): remove subdomain from coder_app with command #22990, commit fd634626) — coder_app no longer supports both command and subdomain, causing deploy_template to fail on terraform validate.

Both commits are required for CI to pass — the first fixes the Docker build and the second fixes Terraform validation.

🤖 Generated by Coder Agents

@johnstcn @f0ssel
chore: evict trivy from the dogfood Dockerfile (#23367)
0e3b878 
- Remove `TRIVY_VERSION` ARG and trivy CLI install block from
`dogfood/coder/Dockerfile`
- The `trivy` job in `.github/workflows/security.yaml` is kept — it uses
`aquasecurity/trivy-action` pinned to a known-good commit

> 🤖 This PR was created with the help of Coder Agents, and was reviewed
by my human. 🧑‍💻
@f0ssel f0ssel mentioned this pull request Apr 10, 2026
Merged
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 10, 2026

👋 Hey @f0ssel!

This PR is targeting the release/2.29 release branch, but its title does not start with fix: or fix(scope):.

Only bug fixes should be cherry-picked to release branches. If this is a bug fix, please update the PR title to match the conventional commit format:

fix: description of the bug fix
fix(scope): description of the bug fix

If this is not a bug fix, it likely should not target a release branch.

@f0ssel f0ssel requested a review from spikecurtis April 10, 2026 14:55
@ethanndickson @f0ssel
fix(dogfood): remove subdomain from coder_app with command (#22990)
c77d3b9 
The `coder_app` resource no longer supports having both `command` and
`subdomain` set simultaneously. This removes `subdomain = true` from the
`develop_sh` app in dogfood, which uses `command`.

This was the only `coder_app` in the repo with both fields set.
@f0ssel f0ssel changed the title chore: evict trivy from the dogfood Dockerfile (backport v2.29) fix: backport dogfood CI fixes to release/2.29 Apr 10, 2026
@f0ssel f0ssel mentioned this pull request Apr 10, 2026
Closed
@f0ssel f0ssel merged commit f8edef2 into release/2.29 Apr 10, 2026
35 checks passed
@f0ssel f0ssel deleted the cherry-pick/remove-trivy-release-2.29 branch April 10, 2026 15:20
@github-actions github-actions Bot locked and limited conversation to collaborators Apr 10, 2026
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@spikecurtis spikecurtis spikecurtis approved these changes

Assignees

@f0ssel f0ssel

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@f0ssel @spikecurtis @johnstcn @ethanndickson