diff --git a/.github/config/config-gcr-retag b/.github/config/config-gcr-retag index 3273e6ffaf..6ede979d77 100644 --- a/.github/config/config-gcr-retag +++ b/.github/config/config-gcr-retag @@ -1,7 +1,12 @@ export TARGET_REGISTRY=gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev -declare -a PLUS_TAG_POSTFIX_LIST=("" "-ubi" "-alpine" "-alpine-fips" "-mktpl") -declare -a NAP_WAF_TAG_POSTFIX_LIST=("" "-ubi" "-ubi8" "-mktpl" "-alpine-fips") +## Disable AWS Marketplace tags +# declare -a PLUS_TAG_POSTFIX_LIST=("" "-ubi" "-alpine" "-alpine-fips" "-mktpl") +# declare -a NAP_WAF_TAG_POSTFIX_LIST=("" "-ubi" "-ubi8" "-mktpl" "-alpine-fips") +# declare -a NAP_DOS_TAG_POSTFIX_LIST=("" "-ubi" "-mktpl") +# declare -a NAP_WAF_DOS_TAG_POSTFIX_LIST=("" "-ubi" "-mktpl") +declare -a PLUS_TAG_POSTFIX_LIST=("" "-ubi" "-alpine" "-alpine-fips") +declare -a NAP_WAF_TAG_POSTFIX_LIST=("" "-ubi" "-ubi8" "-alpine-fips") declare -a NAP_WAFV5_TAG_POSTFIX_LIST=("" "-ubi" "-ubi8" "-alpine-fips") -declare -a NAP_DOS_TAG_POSTFIX_LIST=("" "-ubi" "-mktpl") -declare -a NAP_WAF_DOS_TAG_POSTFIX_LIST=("" "-ubi" "-mktpl") +declare -a NAP_DOS_TAG_POSTFIX_LIST=("" "-ubi") +declare -a NAP_WAF_DOS_TAG_POSTFIX_LIST=("" "-ubi") declare -a ADDITIONAL_TAGS=() diff --git a/.github/config/config-plus-gcr-release b/.github/config/config-plus-gcr-release index e1c6d12e01..ce2f107bf3 100644 --- a/.github/config/config-plus-gcr-release +++ b/.github/config/config-plus-gcr-release @@ -1,8 +1,13 @@ export TARGET_REGISTRY=gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/release -declare -a PLUS_TAG_POSTFIX_LIST=("" "-ubi" "-alpine" "-alpine-fips" "-mktpl") -declare -a NAP_WAF_TAG_POSTFIX_LIST=("" "-ubi" "-ubi8" "-alpine-fips" "-mktpl") +## Disable AWS Marketplace tags +# declare -a PLUS_TAG_POSTFIX_LIST=("" "-ubi" "-alpine" "-alpine-fips" "-mktpl") +# declare -a NAP_WAF_TAG_POSTFIX_LIST=("" "-ubi" "-ubi8" "-alpine-fips" "-mktpl") +# declare -a NAP_DOS_TAG_POSTFIX_LIST=("" "-ubi" "-mktpl") +# declare -a NAP_WAF_DOS_TAG_POSTFIX_LIST=("" "-ubi" "-mktpl") +declare -a PLUS_TAG_POSTFIX_LIST=("" "-ubi" "-alpine" "-alpine-fips") +declare -a NAP_WAF_TAG_POSTFIX_LIST=("" "-ubi" "-ubi8" "-alpine-fips") declare -a NAP_WAFV5_TAG_POSTFIX_LIST=("" "-ubi" "-alpine-fips" "-ubi8") -declare -a NAP_DOS_TAG_POSTFIX_LIST=("" "-ubi" "-mktpl") -declare -a NAP_WAF_DOS_TAG_POSTFIX_LIST=("" "-ubi" "-mktpl") +declare -a NAP_DOS_TAG_POSTFIX_LIST=("" "-ubi") +declare -a NAP_WAF_DOS_TAG_POSTFIX_LIST=("" "-ubi") declare -a ADDITIONAL_TAGS=("latest" "${ADDITIONAL_TAG}") export PUBLISH_OSS=false diff --git a/.github/data/matrix-images-nap.json b/.github/data/matrix-images-nap.json index b93c8404d3..6e55cd2a0c 100644 --- a/.github/data/matrix-images-nap.json +++ b/.github/data/matrix-images-nap.json @@ -6,8 +6,7 @@ "linux/amd64" ], "target": [ - "goreleaser", - "aws" + "goreleaser" ], "nap_modules": [ "dos", diff --git a/.github/data/matrix-images-plus.json b/.github/data/matrix-images-plus.json index ab1717d37d..0ef2d94a4f 100644 --- a/.github/data/matrix-images-plus.json +++ b/.github/data/matrix-images-plus.json @@ -11,11 +11,6 @@ "goreleaser" ], "include": [ - { - "image": "debian-plus", - "platforms": "linux/arm64, linux/amd64", - "target": "aws" - }, { "image": "ubi-9-plus", "platforms": "linux/arm64, linux/amd64", diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 4ceaa00f73..43525de467 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -190,84 +190,87 @@ jobs: id-token: write secrets: inherit - release-plus-gcr-mktpl: - if: ${{ ! cancelled() && ! failure() && ! contains(inputs.skip_step, 'release-plus') }} - name: Release Docker Plus - needs: [variables] - uses: ./.github/workflows/plus-release.yml - strategy: - fail-fast: false - matrix: - tag: - - "${{ inputs.nic_version }}" - - "${{ needs.variables.outputs.short_tag }}" - - "${{ inputs.nic_version }}-${{ needs.variables.outputs.date }}" - with: - gcr_release_registry: false - nginx_registry: false - gcr_mktpl_registry: true - ecr_mktpl_registry: false - az_mktpl_registry: false - source_tag: ${{ needs.variables.outputs.source_tag }} - target_tag: ${{ inputs.nic_version }} - branch: ${{ inputs.release_branch }} - dry_run: ${{ inputs.dry_run }} - permissions: - contents: read - id-token: write - secrets: inherit - - release-plus-aws-mktpl: - if: ${{ ! cancelled() && ! failure() && ! contains(inputs.skip_step, 'release-plus') }} - name: Release Docker Plus - needs: [variables] - uses: ./.github/workflows/plus-release.yml - strategy: - fail-fast: false - matrix: - tag: - - "${{ inputs.nic_version }}" - - "${{ inputs.nic_version }}-${{ needs.variables.outputs.date }}" - with: - gcr_release_registry: false - nginx_registry: false - gcr_mktpl_registry: false - ecr_mktpl_registry: true - az_mktpl_registry: false - source_tag: ${{ needs.variables.outputs.source_tag }} - target_tag: ${{ inputs.nic_version }} - branch: ${{ inputs.release_branch }} - dry_run: ${{ inputs.dry_run }} - permissions: - contents: read - id-token: write - secrets: inherit - - release-plus-azure-mktpl: - if: ${{ ! cancelled() && ! failure() && ! contains(inputs.skip_step, 'release-plus') }} - name: Release Docker Plus - needs: [variables] - uses: ./.github/workflows/plus-release.yml - strategy: - fail-fast: false - matrix: - tag: - - "${{ inputs.nic_version }}" - - "${{ inputs.nic_version }}-${{ needs.variables.outputs.date }}" - with: - gcr_release_registry: false - nginx_registry: false - gcr_mktpl_registry: false - ecr_mktpl_registry: false - az_mktpl_registry: true - source_tag: ${{ needs.variables.outputs.source_tag }} - target_tag: ${{ inputs.nic_version }} - branch: ${{ inputs.release_branch }} - dry_run: ${{ inputs.dry_run }} - permissions: - contents: read - id-token: write - secrets: inherit + ## Disable GCP Marketplace step for now until a decision is made on how to handle GCP Marketplace with licensing + # release-plus-gcr-mktpl: + # if: ${{ ! cancelled() && ! failure() && ! contains(inputs.skip_step, 'release-plus') }} + # name: Release Docker Plus + # needs: [variables] + # uses: ./.github/workflows/plus-release.yml + # strategy: + # fail-fast: false + # matrix: + # tag: + # - "${{ inputs.nic_version }}" + # - "${{ needs.variables.outputs.short_tag }}" + # - "${{ inputs.nic_version }}-${{ needs.variables.outputs.date }}" + # with: + # gcr_release_registry: false + # nginx_registry: false + # gcr_mktpl_registry: true + # ecr_mktpl_registry: false + # az_mktpl_registry: false + # source_tag: ${{ needs.variables.outputs.source_tag }} + # target_tag: ${{ inputs.nic_version }} + # branch: ${{ inputs.release_branch }} + # dry_run: ${{ inputs.dry_run }} + # permissions: + # contents: read + # id-token: write + # secrets: inherit + + ## Disable AWS Marketplace step for now until a decision is made on how to handle AWS Marketplace with licensing + # release-plus-aws-mktpl: + # if: ${{ ! cancelled() && ! failure() && ! contains(inputs.skip_step, 'release-plus') }} + # name: Release Docker Plus + # needs: [variables] + # uses: ./.github/workflows/plus-release.yml + # strategy: + # fail-fast: false + # matrix: + # tag: + # - "${{ inputs.nic_version }}" + # - "${{ inputs.nic_version }}-${{ needs.variables.outputs.date }}" + # with: + # gcr_release_registry: false + # nginx_registry: false + # gcr_mktpl_registry: false + # ecr_mktpl_registry: true + # az_mktpl_registry: false + # source_tag: ${{ needs.variables.outputs.source_tag }} + # target_tag: ${{ inputs.nic_version }} + # branch: ${{ inputs.release_branch }} + # dry_run: ${{ inputs.dry_run }} + # permissions: + # contents: read + # id-token: write + # secrets: inherit + + ## Disable Azure Marketplace step for now until a decision is made on how to handle Azure Marketplace with licensing + # release-plus-azure-mktpl: + # if: ${{ ! cancelled() && ! failure() && ! contains(inputs.skip_step, 'release-plus') }} + # name: Release Docker Plus + # needs: [variables] + # uses: ./.github/workflows/plus-release.yml + # strategy: + # fail-fast: false + # matrix: + # tag: + # - "${{ inputs.nic_version }}" + # - "${{ inputs.nic_version }}-${{ needs.variables.outputs.date }}" + # with: + # gcr_release_registry: false + # nginx_registry: false + # gcr_mktpl_registry: false + # ecr_mktpl_registry: false + # az_mktpl_registry: true + # source_tag: ${{ needs.variables.outputs.source_tag }} + # target_tag: ${{ inputs.nic_version }} + # branch: ${{ inputs.release_branch }} + # dry_run: ${{ inputs.dry_run }} + # permissions: + # contents: read + # id-token: write + # secrets: inherit publish-helm-chart: if: ${{ ! cancelled() && ! failure() && ! inputs.dry_run && ! contains(inputs.skip_step, 'publish-helm-chart') }} @@ -277,7 +280,7 @@ jobs: branch: ${{ inputs.release_branch }} ic_version: ${{ inputs.nic_version }} chart_version: ${{ inputs.chart_version }} - nginx_helm_repo: true + nginx_helm_repo: false # disable automatic repo update until nginx-bot issue is resolved, manually update repo permissions: contents: write # for pushing to Helm Charts repository packages: write # for helm to push to GHCR @@ -301,123 +304,127 @@ jobs: image: quay.io/nginx/nginx-ingress:${{ inputs.nic_version }}-ubi project_id: ${{ secrets.CERTIFICATION_PROJECT_ID }} pyxis_token: ${{ secrets.PYXIS_API_TOKEN }} - preflight_version: 1.11.1 - - operator: - if: ${{ ! cancelled() && ! failure() && ! inputs.dry_run && ! contains(inputs.skip_step, 'operator') && !contains(inputs.skip_step, 'publish-helm-chart') }} - name: Trigger PR for Operator - runs-on: ubuntu-22.04 - needs: [variables,publish-helm-chart] - steps: - - name: - uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 - with: - github-token: ${{ secrets.NGINX_PAT }} - script: | - await github.rest.actions.createWorkflowDispatch({ - owner: 'nginxinc', - repo: 'nginx-ingress-helm-operator', - workflow_id: 'sync-chart.yml', - ref: 'main', - inputs: { - chart_version: '${{ inputs.chart_version }}', - operator_version: '${{ inputs.operator_version }}', - k8s_version: '${{ needs.variables.outputs.k8s_version }}', - dry_run: '${{ inputs.dry_run }}' - }, - }) - - gcp-marketplace: - if: ${{ ! cancelled() && ! failure() && ! inputs.dry_run && ! contains(inputs.skip_step, 'gcp-marketplace') }} - name: Trigger PR for GCP Marketplace - runs-on: ubuntu-22.04 - needs: [publish-helm-chart,release-plus-gcr-mktpl] - steps: - - name: - uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 - with: - github-token: ${{ secrets.NGINX_PAT }} - script: | - await github.rest.actions.createWorkflowDispatch({ - owner: context.repo.owner, - repo: 'kubernetes-ingress-gcp', - workflow_id: 'sync-chart.yml', - ref: 'main', - inputs: { - chart_version: '${{ inputs.chart_version }}' - }, - }) - - azure-marketplace: - if: ${{ ! cancelled() && ! failure() && ! inputs.dry_run && ! contains(inputs.skip_step, 'azure-marketplace') }} - name: Trigger CNAB Build for Azure Marketplace - runs-on: ubuntu-22.04 - needs: [publish-helm-chart,release-plus-azure-mktpl] - steps: - - name: - uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 - with: - github-token: ${{ secrets.NGINX_PAT }} - script: | - await github.rest.actions.createWorkflowDispatch({ - owner: context.repo.owner, - repo: 'kubernetes-ingress-azure', - workflow_id: 'build-cnab.yml', - ref: 'main', - inputs: { - chart_version: '${{ inputs.chart_version }}', - ic_version: '${{ inputs.nic_version }}', - cnab_version: '${{ inputs.cnab_version }}' - }, - }) - - aws-marketplace: - if: ${{ ! cancelled() && ! failure() && ! inputs.dry_run && ! contains(inputs.skip_step, 'aws-marketplace') }} - name: Publish to AWS Marketplace - runs-on: ubuntu-22.04 - needs: [release-plus-aws-mktpl] - permissions: - contents: read - id-token: write - strategy: - fail-fast: false - matrix: - include: - - image: 709825985650.dkr.ecr.us-east-1.amazonaws.com/nginx/nginx-plus-ingress:${{ inputs.nic_version }}-mktpl - product_id: AWS_PRODUCT_ID - - image: 709825985650.dkr.ecr.us-east-1.amazonaws.com/nginx/nginx-plus-ingress-nap:${{ inputs.nic_version }}-mktpl - product_id: AWS_NAP_WAF_PRODUCT_ID - - image: 709825985650.dkr.ecr.us-east-1.amazonaws.com/nginx/nginx-plus-ingress-dos:${{ inputs.nic_version }}-mktpl - product_id: AWS_NAP_DOS_PRODUCT_ID - - image: 709825985650.dkr.ecr.us-east-1.amazonaws.com/nginx/nginx-plus-ingress-dos-nap:${{ inputs.nic_version }}-mktpl - product_id: AWS_NAP_WAF_DOS_PRODUCT_ID - steps: - - name: Checkout Repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - with: - ref: ${{ inputs.release_branch }} - - - name: Configure AWS Credentials - uses: aws-actions/configure-aws-credentials@b47578312673ae6fa5b5096b330d9fbac3d116df # v4.2.1 - with: - aws-region: us-east-1 - role-to-assume: ${{ secrets.AWS_ROLE_MARKETPLACE }} - - - name: Publish to AWS Marketplace - uses: nginx/aws-marketplace-publish@accf7b4c725796b744f2ee27acc2488d76f63d32 # v1.0.8 - continue-on-error: true - with: - version: ${{ inputs.nic_version }} - product-id: ${{ secrets[matrix.product_id] }} - registry: ${{ matrix.image }} - release-notes: https://github.com/nginx/kubernetes-ingress/releases/tag/v${{ inputs.nic_version }} - description: | - Best-in-class traffic management solution for services in Amazon EKS. - This is the official implementation of NGINX Ingress Controller (based on NGINX Plus) from NGINX. - usage-instructions: | - This container requires Kubernetes and can be deployed to EKS. - Review the installation instructions https://docs.nginx.com/nginx-ingress-controller/installation/ and utilize the deployment resources available https://github.com/nginx/kubernetes-ingress/tree/v${{ inputs.nic_version }}/deployments - Use this image instead of building your own. + preflight_version: 1.13.3 + + ## Disable operator release step for now until nginx-bot issue is resolved, manually trigger workflow in nginx-ingress-helm-operator + # operator: + # if: ${{ ! cancelled() && ! failure() && ! inputs.dry_run && ! contains(inputs.skip_step, 'operator') && !contains(inputs.skip_step, 'publish-helm-chart') }} + # name: Trigger PR for Operator + # runs-on: ubuntu-22.04 + # needs: [variables,publish-helm-chart] + # steps: + # - name: + # uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 + # with: + # github-token: ${{ secrets.NGINX_PAT }} + # script: | + # await github.rest.actions.createWorkflowDispatch({ + # owner: 'nginxinc', + # repo: 'nginx-ingress-helm-operator', + # workflow_id: 'sync-chart.yml', + # ref: 'main', + # inputs: { + # chart_version: '${{ inputs.chart_version }}', + # operator_version: '${{ inputs.operator_version }}', + # k8s_version: '${{ needs.variables.outputs.k8s_version }}', + # dry_run: '${{ inputs.dry_run }}' + # }, + # }) + + ## Disable GCP Marketplace step for now until a decision is made on how to handle GCP Marketplace with licensing + # gcp-marketplace: + # if: ${{ ! cancelled() && ! failure() && ! inputs.dry_run && ! contains(inputs.skip_step, 'gcp-marketplace') }} + # name: Trigger PR for GCP Marketplace + # runs-on: ubuntu-22.04 + # needs: [publish-helm-chart,release-plus-gcr-mktpl] + # steps: + # - name: + # uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 + # with: + # github-token: ${{ secrets.NGINX_PAT }} + # script: | + # await github.rest.actions.createWorkflowDispatch({ + # owner: context.repo.owner, + # repo: 'kubernetes-ingress-gcp', + # workflow_id: 'sync-chart.yml', + # ref: 'main', + # inputs: { + # chart_version: '${{ inputs.chart_version }}' + # }, + # }) + + ## Disable Azure Marketplace step for now until a decision is made on how to handle Azure Marketplace with licensing + # azure-marketplace: + # if: ${{ ! cancelled() && ! failure() && ! inputs.dry_run && ! contains(inputs.skip_step, 'azure-marketplace') }} + # name: Trigger CNAB Build for Azure Marketplace + # runs-on: ubuntu-22.04 + # needs: [publish-helm-chart,release-plus-azure-mktpl] + # steps: + # - name: + # uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 + # with: + # github-token: ${{ secrets.NGINX_PAT }} + # script: | + # await github.rest.actions.createWorkflowDispatch({ + # owner: context.repo.owner, + # repo: 'kubernetes-ingress-azure', + # workflow_id: 'build-cnab.yml', + # ref: 'main', + # inputs: { + # chart_version: '${{ inputs.chart_version }}', + # ic_version: '${{ inputs.nic_version }}', + # cnab_version: '${{ inputs.cnab_version }}' + # }, + # }) + + ## Disable AWS Marketplace step for now until a decision is made on how to handle AWS Marketplace with licensing + # aws-marketplace: + # if: ${{ ! cancelled() && ! failure() && ! inputs.dry_run && ! contains(inputs.skip_step, 'aws-marketplace') }} + # name: Publish to AWS Marketplace + # runs-on: ubuntu-22.04 + # needs: [release-plus-aws-mktpl] + # permissions: + # contents: read + # id-token: write + # strategy: + # fail-fast: false + # matrix: + # include: + # - image: 709825985650.dkr.ecr.us-east-1.amazonaws.com/nginx/nginx-plus-ingress:${{ inputs.nic_version }}-mktpl + # product_id: AWS_PRODUCT_ID + # - image: 709825985650.dkr.ecr.us-east-1.amazonaws.com/nginx/nginx-plus-ingress-nap:${{ inputs.nic_version }}-mktpl + # product_id: AWS_NAP_WAF_PRODUCT_ID + # - image: 709825985650.dkr.ecr.us-east-1.amazonaws.com/nginx/nginx-plus-ingress-dos:${{ inputs.nic_version }}-mktpl + # product_id: AWS_NAP_DOS_PRODUCT_ID + # - image: 709825985650.dkr.ecr.us-east-1.amazonaws.com/nginx/nginx-plus-ingress-dos-nap:${{ inputs.nic_version }}-mktpl + # product_id: AWS_NAP_WAF_DOS_PRODUCT_ID + # steps: + # - name: Checkout Repository + # uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 + # with: + # ref: ${{ inputs.release_branch }} + + # - name: Configure AWS Credentials + # uses: aws-actions/configure-aws-credentials@b47578312673ae6fa5b5096b330d9fbac3d116df # v4.2.1 + # with: + # aws-region: us-east-1 + # role-to-assume: ${{ secrets.AWS_ROLE_MARKETPLACE }} + + # - name: Publish to AWS Marketplace + # uses: nginx/aws-marketplace-publish@accf7b4c725796b744f2ee27acc2488d76f63d32 # v1.0.8 + # continue-on-error: true + # with: + # version: ${{ inputs.nic_version }} + # product-id: ${{ secrets[matrix.product_id] }} + # registry: ${{ matrix.image }} + # release-notes: https://github.com/nginx/kubernetes-ingress/releases/tag/v${{ inputs.nic_version }} + # description: | + # Best-in-class traffic management solution for services in Amazon EKS. + # This is the official implementation of NGINX Ingress Controller (based on NGINX Plus) from NGINX. + # usage-instructions: | + # This container requires Kubernetes and can be deployed to EKS. + # Review the installation instructions https://docs.nginx.com/nginx-ingress-controller/installation/ and utilize the deployment resources available https://github.com/nginx/kubernetes-ingress/tree/v${{ inputs.nic_version }}/deployments + # Use this image instead of building your own. binaries: name: Process Binaries diff --git a/.goreleaser.yml b/.goreleaser.yml index cf6fd3b6e7..4b44b0e9de 100644 --- a/.goreleaser.yml +++ b/.goreleaser.yml @@ -20,75 +20,76 @@ builds: - -s -w -X main.version={{.Version}} main: ./cmd/nginx-ingress/ binary: nginx-ingress - - id: aws - goos: - - linux - goarch: - - amd64 - - arm64 - flags: - - -trimpath - gcflags: - - all=-trimpath={{.Env.GOPATH}} - asmflags: - - all=-trimpath={{.Env.GOPATH}} - ldflags: - - -s -w -X main.version={{.Version}} -X main.productCode={{.Env.AWS_PRODUCT_CODE}} -X main.pubKeyString={{.Env.AWS_PUB_KEY}} - main: ./cmd/nginx-ingress/ - binary: nginx-ingress - tags: - - aws - - id: aws-nap-dos - goos: - - linux - goarch: - - amd64 - flags: - - -trimpath - gcflags: - - all=-trimpath={{.Env.GOPATH}} - asmflags: - - all=-trimpath={{.Env.GOPATH}} - ldflags: - - -s -w -X main.version={{.Version}} -X main.productCode={{.Env.AWS_NAP_DOS_PRODUCT_CODE}} -X main.pubKeyString={{.Env.AWS_NAP_DOS_PUB_KEY}} - main: ./cmd/nginx-ingress/ - binary: nginx-ingress - tags: - - aws - - id: aws-nap-waf - goos: - - linux - goarch: - - amd64 - flags: - - -trimpath - gcflags: - - all=-trimpath={{.Env.GOPATH}} - asmflags: - - all=-trimpath={{.Env.GOPATH}} - ldflags: - - -s -w -X main.version={{.Version}} -X main.productCode={{.Env.AWS_NAP_WAF_PRODUCT_CODE}} -X main.pubKeyString={{.Env.AWS_NAP_WAF_PUB_KEY}} - main: ./cmd/nginx-ingress/ - binary: nginx-ingress - tags: - - aws - - id: aws-nap-both - goos: - - linux - goarch: - - amd64 - flags: - - -trimpath - gcflags: - - all=-trimpath={{.Env.GOPATH}} - asmflags: - - all=-trimpath={{.Env.GOPATH}} - ldflags: - - -s -w -X main.version={{.Version}} -X main.productCode={{.Env.AWS_NAP_WAF_DOS_PRODUCT_CODE}} -X main.pubKeyString={{.Env.AWS_NAP_WAF_DOS_PUB_KEY}} - main: ./cmd/nginx-ingress/ - binary: nginx-ingress - tags: - - aws + ## Disable AWS Marketplace builds + # - id: aws + # goos: + # - linux + # goarch: + # - amd64 + # - arm64 + # flags: + # - -trimpath + # gcflags: + # - all=-trimpath={{.Env.GOPATH}} + # asmflags: + # - all=-trimpath={{.Env.GOPATH}} + # ldflags: + # - -s -w -X main.version={{.Version}} -X main.productCode={{.Env.AWS_PRODUCT_CODE}} -X main.pubKeyString={{.Env.AWS_PUB_KEY}} + # main: ./cmd/nginx-ingress/ + # binary: nginx-ingress + # tags: + # - aws + # - id: aws-nap-dos + # goos: + # - linux + # goarch: + # - amd64 + # flags: + # - -trimpath + # gcflags: + # - all=-trimpath={{.Env.GOPATH}} + # asmflags: + # - all=-trimpath={{.Env.GOPATH}} + # ldflags: + # - -s -w -X main.version={{.Version}} -X main.productCode={{.Env.AWS_NAP_DOS_PRODUCT_CODE}} -X main.pubKeyString={{.Env.AWS_NAP_DOS_PUB_KEY}} + # main: ./cmd/nginx-ingress/ + # binary: nginx-ingress + # tags: + # - aws + # - id: aws-nap-waf + # goos: + # - linux + # goarch: + # - amd64 + # flags: + # - -trimpath + # gcflags: + # - all=-trimpath={{.Env.GOPATH}} + # asmflags: + # - all=-trimpath={{.Env.GOPATH}} + # ldflags: + # - -s -w -X main.version={{.Version}} -X main.productCode={{.Env.AWS_NAP_WAF_PRODUCT_CODE}} -X main.pubKeyString={{.Env.AWS_NAP_WAF_PUB_KEY}} + # main: ./cmd/nginx-ingress/ + # binary: nginx-ingress + # tags: + # - aws + # - id: aws-nap-both + # goos: + # - linux + # goarch: + # - amd64 + # flags: + # - -trimpath + # gcflags: + # - all=-trimpath={{.Env.GOPATH}} + # asmflags: + # - all=-trimpath={{.Env.GOPATH}} + # ldflags: + # - -s -w -X main.version={{.Version}} -X main.productCode={{.Env.AWS_NAP_WAF_DOS_PRODUCT_CODE}} -X main.pubKeyString={{.Env.AWS_NAP_WAF_DOS_PUB_KEY}} + # main: ./cmd/nginx-ingress/ + # binary: nginx-ingress + # tags: + # - aws changelog: disable: true