New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
skopeo: 0.2.0 -> 1.0.0, don't set policy and tmpdir during build #87821
Conversation
I think Skopeo should work out of the box without having to specify any specific arguments, excepting for security reasons. |
I think
I agree with this, if they change this upstream in a consistent way for all of the tools that would be good. However I see this as a inconsistency that we should resolve as we are the ones that are setting the policy at build time causing I think we should just accept that it doesn't work out of the box. |
Not necessarily a good alternative but we could use the same method to set the default policy for all of the tools and remove the |
@NixOS/podman Any thoughts on this? |
This is a very good longer term goal, but in the mean time setting the policy to a built-in causing Skopeo to ignore This issue is about more than just Skopeo, and more than just this one file. See containers/podman#6053. |
It seems you are right :(
I don't think the Graham proposal would fix our current issue. |
@zowoq Could you rebase, |
Bumped to 1.0.0. |
This broke |
Motivation for this change
Things done
sandbox
innix.conf
on non-NixOS linux)nix-shell -p nixpkgs-review --run "nixpkgs-review wip"
./result/bin/
)nix path-info -S
before and after)