Skip to content

v0.5.0
Compare
Choose a tag to compare
@GordonTheTurtle GordonTheTurtle released this 27 Apr 00:43
v0.5.0
8c0fa8f
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Images

https://hub.docker.com/r/moby/buildkit/tags/

  • docker.io/moby/buildkit:v0.5.0
    sha256:ead5be62f4675b37f307e3000e5031644801219585020a6362aa71e02cb61027

  • docker.io/moby/buildkit:v0.5.0-rootless
    sha256:5fcb511bf1067a5635b45b8269c05319a8a686460d704e554306f34d098cd440

Notable Changes

FileOp

LLB supports new operation FileOp allowing built-in file operations during build like copying files, creating new files or directories and removing files. Previously ADD/COPY commands used a helper image that ran a custom binary inside a container, now these commands use FileOp directly. This allows better performance and use of these commands in air-gapped environments without preloading the helper image, as well as fixing issues reported with the helper image implementation.

#809

Security entitlements

BuildKit now supports modes for granting builds permissions to execute processes with privileged capabilities. Certain options for running processes with LLB will require users to grant a capability before their build can run.

This enables specific builds to run processes that require system capabilities without compromising on the security of the default builds.

Currently two entitlements are supported:

network.host - Runs a specific process in the host network namespace.
security.insecure - Runs a process with all system capabilities enabled and security modules (eg. seccomp) disabled. Similar to docker run --privileged.

The entitlements need to be enabled both in the daemon configuration file and passed with a build request using --allow to take effect.

#570

New connection helpers for buildctl

Buildctl now has support for connecting to BuildKit daemon running in a Docker container or Kubernetes pod by using docker-container://<name> or kube-pod://<name> as BUILDKIT_HOST value.

#904
#951

Tar exporter

Build output can now be exported to the client as a tarball. Similar to the local exporter but allows preserving the file owner values.

buildctl build -o type=tar,dest=foo.tar ...
buildctl build -o type=tar ... > foo.tar

#907

New progress output formatting

Progress output has been improved. The TTY output now shows the last logs for currently running processes directly in the interactive output. Plain progress has been also updated for better readability.

#916
#919

Contributors

  • Tõnis Tiigi
  • Akihiro Suda
  • Tibor Vass
  • Kunal Kushwaha
  • Dave Chen
  • Sebastiaan van Stijn
  • Hao Hu
  • Himanshu Pandey
  • Hiromu Nakamura
  • Michael Crosby
  • Tomohiro Kusumoto
  • Wei Fu
  • Ziv Tsarfati

https://travis-ci.org/moby/buildkit/builds/525193182

Assets 10
Loading