Add vendored-source logic to full release pipeline

#1338 added this logic to the nightly release pipeline.
tektoncd · Sep 20, 2019 · 738e35e · 738e35e
1 parent c5dfdd8
commit 738e35e
Show file tree

Hide file tree

Showing 3 changed files with 15 additions and 0 deletions.
diff --git a/cmd/entrypoint/kodata/LICENSE b/cmd/entrypoint/kodata/LICENSE
@@ -0,0 +1 @@
+LICENSE
diff --git a/cmd/entrypoint/kodata/VENDOR-LICENSE b/cmd/entrypoint/kodata/VENDOR-LICENSE
@@ -0,0 +1 @@
+third_party/VENDOR-LICENSE
diff --git a/tekton/publish.yaml b/tekton/publish.yaml
@@ -130,6 +130,19 @@ spec:
       # Change to directory with our .ko.yaml
       cd /workspace/go/src/github.com/tektoncd/pipeline
 
+      # For each cmd/* directory, include a full gzipped tar of all source in
+      # vendor/. This is overkill. Some deps' licenses require the source to be
+      # included in the container image when they're used as a dependency.
+      # Rather than trying to determine which deps have this requirement (and
+      # probably get it wrong), we'll just targz up the whole vendor tree and
+      # include it. As of 9/20/2019, this amounts to about 11MB of additional
+      # data in each image.
+      TMPDIR=$(mktemp -d)
+      tar cvfz ${TMPDIR}/source.tar.gz vendor/
+      for d in cmd/*; do
+        ln -s ${TMPDIR}/source.tar.gz ${d}/kodata/
+      done
+
       # Publish images and create release.yaml
       ko resolve --preserve-import-paths -f /workspace/go/src/github.com/tektoncd/pipeline/config/ > /workspace/output/bucket/latest/release.yaml
     volumeMounts: