#github-feed

As @rawkode pointed here: #node-sdk-dev⬢ message
there is no mention of authentication on the host. Maybe we could add it on docs @vikram-dagger ?

We use SDK objects as much as possible, except in obvious case (when getting an object from its ID, we need to pass the ID, not the object itself, otherwise there is no value).

There is some part in the GraphQL API that needs to be updated (some param are name id but we pass them the object directly, and it would be better if they were renamed something else: https://github.com/dagger/dagger/issues/4192

fixes: #4214

Bumps @typescript-eslint/eslint-plugin from 5.47.1 to 5.48.0.

Release notes
Sourced from @​typescript-eslint/eslint-plugin's releases.

v5.48.0
5.48.0 (2023-01-02)
Bug Fixes

website: fix typo (#6285) (3f8d105)

Features

eslint-plugin: specify which method is unbound and added test case (#6281) (cf3ffdd)

Changelog
Sourced from @​typescript-eslint/eslint-plugin's changelog.

5.48.0 (2023-01-02)
Fea...

We forgot to add this in the NodeJS SDK when adding socket API.

It shows we really need to harmonize Go and NodeJS SDK to share more functionalities in the template functions. cf: #4032

For reference:

https://github.com/dagger/dagger/actions/runs/3846110644/jobs/6551036114#step:6:653

#19 156.0 ==================
#19 156.0 WARNING: DATA RACE
#19 156.0 Read at 0x00c0006c2a03 by goroutine 281:
#19 156.0   testing.(*common).logDepth()
#19 156.0       /usr/local/go/src/testing/testing.go:883 +0xc4
#19 156.0   testing.(*common).log()
#19 156.0       /usr/local/go/src/testing/testing.go:876 +0xa4
#19 156.0   testing.(*common).Logf()
#19 156.0       /usr/local/go/...

Bumps github.com/containerd/containerd from 1.6.13 to 1.6.15.

Release notes
Sourced from github.com/containerd/containerd's releases.

containerd 1.6.15
Welcome to the v1.6.15 release of containerd!
The fifteenth patch release for containerd 1.6 fixes an issue with CNI in the CRI plugin
Notable Updates

Fix no CNI info for pod sandbox on restart in CRI plugin (#7848)

See the changelog for complete list of changes
Please try out the release binarie...

Bumps golang.org/x/mod from 0.6.0 to 0.7.0.

Commits

7c05a44 sumdb/note: remove dependency on golang.org/x/crypto/ed25519
See full diff in compare view

[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates...

These two commands are quite similar to the point where they should probably be combined into one. This will require some thinking since dagger session has a json output consumed the SDKs that isn't ideal for humans using dagger listen among other little issues like that. These can most likely be addressed through flags that tweak the behavior (i.e. a flag to enable json output that the sdks use).

This is a non-essential spin off task from the previous overall effort to update the sess...

Context

When running any of the SDKs, whenever a session error gets triggered, output error messages are hard to decipher, leaving users with no actionable actions to debug, except requesting more information on Discord.

Current cases:

• the user manually stops his engine container
• the user is referencing a wrong engine, with its environment variables

Currently, the only error feedback retrieved is a hardcoded buildkit failed to respond message, either retrieved by SDKs, ...

Whenever a dagger session connection fails, the output error message is get forwarded by the Python SDK.

This behavior was already commented in the codebase, but not referenced as an issue yet:

• https://github.com/dagger/dagger/blob/main/sdk/python/src/dagger/session.py#L63
• https://github.com/dagger/dagger/blob/main/sdk/python/src/dagger/session.py#L74

Below is an example with a modified version of our dagger session where it should retrieve the stderr of buildkit.
Instead, w...

Similar to #4321

Whenever a dagger session connection fails, the output error message is not forwarded by the Node SDK.

Below is an example with a modified version of our dagger session where it should retrieve the stderr of buildkit.
Instead, we get the stack trace error with a hardcoded string "No line was found to parse the engine connect params":

➜  typescript_sdk node --loader ts-node/esm copy.ts

(node:83510) ExperimentalWarning: Custom ESM Loaders is an experimental fe...

As discussed here : https://github.com/dagger/dagger/pull/4240#discussion_r1061342567
We should use the most appropriate Typedoc tags when documenting the SDK.

export type DirectoryWithDirectoryOpts = {
 /**
  * Exclude artifacts that match the given pattern.
- * (e.g. ["node_modules/", ".git*"])

export type DirectoryWithDirectoryOpts = {
 /**
  * Exclude artifacts that match the given pattern.
+ * @example
+ * ["node_modules/", ".git*"]

Signed-off-by: kpenfound

Closes https://github.com/dagger/dagger/issues/3470

This is a test PR.

Signed-off-by: Marcos Lilljedahl

This is a test PR.

Signed-off-by: Marcos Lilljedahl

What are you trying to do?

Comments from @dolanor applied, I'll also make sure every query follow the convention we defined above:

 description using the param names.
(ending with a .)

And that every query params with doc associated has a line break.

We can take care of example formatting and additional example in a follow-up PR.

Having a linter to ensure those roles are set on our schema is a good idea.
This [linter](https://github.com/c...

Close to the issue https://github.com/dagger/dagger/issues/3885

This first iteration is using the pattern proposed by @sipsma.

func AddAFewMounts(c *dagger.Container) *dagger.Container {
  return c.
    WithMountedDirectory("/foo", c.Host().Directory("foo").
    WithMountedDirectory("/bar", c.Host().Directory("bar")
}

func main() {
 output, err := Container().
    From("alpine").
    WithWorkdir("/foo").
    With(AddAFewMounts).
    Exec("blah").Stdout().Contents()
...

Fixes #4212

Signed-off-by: Helder Correia

Signed-off-by: Helder Correia

This is a test PR.

Just played around with tsup (love esbuild and always wanted to try it) and tried it out on the dagger nodesdk.
The result might be interesting IMO.

Those are some of the things I played around with

• Moved all sources inside the src directory
• Used tsup (esbuild wrapper) to build/bundle cjs and esm

Like always I am open to feedback.
Signed-off-by: Benjamin Strasser

This commit adds information on the docs release process.

Closes #3542

Signed-off-by: Vikram Vaswani

This PR was auto-generated.

What are you trying to do?

At the moment, we can mark things as sensitive ONLY from environment variables that exist before the Dagger client is created.

We do this with: client.host().envVariable("X").secret()

In a mono-repository environment, or any environment where more than a single secrets backend is used - this can be rather difficult to orchestrate. Do we blanket make every secret available before we run, or can we do this smarter?

I've tried two approaches.

1. Cont...

Observability test PR

Bumps github.com/moby/buildkit from 0.11.0-rc3 to 0.11.0-rc4.

Release notes
Sourced from github.com/moby/buildkit's releases.

v0.11.0-rc4
Welcome to the 0.11.0-rc4 release of buildkit!
This is a pre-release of buildkit
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Notable changes

Fix indentation in in-toto and traces #3423
Possibility to control attestation filenames #3428
Fix order of build steps i...

Bumps prettier from 2.8.1 to 2.8.2.

Release notes
Sourced from prettier's releases.

2.8.2
🔗 Changelog

Changelog
Sourced from prettier's changelog.

2.8.2
diff
Don't lowercase link references (#13155 by @​DerekNonGeneric & @​fisker)

<!-- Input -->
We now don't strictly follow the release notes format suggested by [Keep a Changelog].
<!-- Prettier 2.8.1 -->
We now don't strictly follow the release notes format suggested by Keep a Cha...

Bumps docusaurus-plugin-sass from 0.2.2 to 0.2.3.

Release notes
Sourced from docusaurus-plugin-sass's releases.

v0.2.3
What's Changed

Bump minimist from 1.2.5 to 1.2.6 by @​dependabot in rlamana/docusaurus-plugin-sass#24
Bump loader-utils from 2.0.0 to 2.0.3 by @​dependabot in rlamana/docusaurus-plugin-sass#26
Bump loader-utils from 2.0.3 to 2.0.4 by @​dependabot in rlamana/docusaurus-plugin-sass#27
Bump json5 from 2.2.1 to 2.2.3 by @​de...

Bumps @typescript-eslint/eslint-plugin from 5.48.0 to 5.48.1.

Release notes
Sourced from @​typescript-eslint/eslint-plugin's releases.

v5.48.1
5.48.1 (2023-01-09)
Note: Version bump only for package @​typescript-eslint/typescript-eslint

Changelog
Sourced from @​typescript-eslint/eslint-plugin's changelog.

5.48.1 (2023-01-09)
Note: Version bump only for package @​typescript-eslint/eslint-plugin

...

Bumps typedoc from 0.23.23 to 0.23.24.

Release notes
Sourced from typedoc's releases.

v0.23.24
Bug Fixes

Fixed an issue where signature comments were preferred over property comments for indirectly created function-properties, #2135.
Fixed symlink handling when expanding entry points, #2130.

Thanks!

@​boneskull

Changelog
Sourced from typedoc's changelog.

v0.23.24 (2023-01-07)
Bug Fixes

Fixed an issue where signature comments were preferred o...

When using -X to override a variable at link time, this caveat is important:

This is only effective if the variable is declared in the source
code either uninitialized or initialized to a constant string
expression. -X will not work if the initializer makes a function
call or refers to other variables.

Now we set Version to DevelopmentVersion in an init func instead, which allows it to be uninitialized and thus usable w/ -X.

Signed-off-by: Erik Sipsma

Test manually on my...

This PR was auto-generated.

Signed-off-by: Erik Sipsma

Signed-off-by: Erik Sipsma

Should fix the problem mentioned in 2 here that was noticed during the release. There were duplicated runs for test+lint, one for pull_request and one for push because we ran the checks against a push to any branch, which includes the branch that the engine bump PR is opened against (bump-engine)

Signed-off-by: Erik Sipsma

Fixes problem encountered during releases today where a tag push workflow tried using the "main" format of the s3 url instead of the "releases" one, e.g. https://github.com/dagger/dagger/actions/runs/3878065764

• Use the new typo size relative to the Dagger style guide.
• Change code tags background colors.

Signed-off-by: jffarge

Signed-off-by: Erik Sipsma

User was asking about connecting to podman container here: #1062413462082420757 message

Bumps github.com/moby/buildkit from 0.11.0-rc3 to 0.11.0.

Release notes
Sourced from github.com/moby/buildkit's releases.

v0.11.0
Welcome to the 0.11.0 release of buildkit!
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Notable Changes

Builtin Dockerfile frontend has been updated to v1.5.0 https://github.com/moby/buildkit/releases/tag/dockerfile%2F1.5.0

BuildKit and compatible frontends can now pr...

What is the issue?

Create the structure and text for the common quickstart guide.

What is the issue?

Create Go example code for common quickstart guide

What is the issue?

Create Node.js example code for common quickstart guide

What is the issue?

Create Python example code for common quickstart guide

What is the issue?

This task is to integrate analytics into the common quickstart guide to answer the following questions:

• Is the multi-language approach engaging for readers?
• Is this approach preferable to single-language guides?
• Is there a clear preference for one language over others?
• etc

• docs: add linting support for node snippets
• fixes issue parsing DAGGER_SESSION_PORT and DAGGER_SESSION_TOKEN

Goal

• remove extraneous template commands (use }} instead of -}} as we already have {{- in general)
• remove template files if too simple (simple range)

Problem

In order to unify SDKs behavior (on all platforms) and solve https://github.com/dagger/dagger/issues/3963: the NodeSDK needs to
follow the value of the XDG_CACHE_HOME env var prior using the fallback value given by the library.

Context

Given these tests: https://github.com/dagger/dagger/issues/3963#issuecomment-1377488220, we see that the Node SDK does not follow the value of the XDG_CACHE_HOME env var at all.

Solution

The python library doesn't follow the v...

Closes #4244

Allow users to build a particular target in a multi-stage Dockerfile.

Extends these APIs:

• (container *Container) Build
• (s *containerSchema) build

This feature was recently requested by active users, on Discord: #general message

PS: the .gitignore add is for me, as I'm relying on go workspaces to have the linter on VSCode. Did not want to make a single PR to add that.

Signed-off-by: gr...

If XDG_CACHE_HOME not set fallback to the system default.

Close to https://github.com/dagger/dagger/issues/3963

Signed-off-by: jffarge

Bumps google.golang.org/grpc from 1.51.0 to 1.52.0.

Release notes
Sourced from google.golang.org/grpc's releases.

Release 1.52.0
New Features

xdsclient: log node ID with verbosity INFO (#5860)
ringhash: impose cap on max_ring_size to reduce possibility of OOMs (#5801)

Behavior Changes

client: return an error from Dial if an empty target is passed and no custom dialer is present; the ClientConn would otherwise be unable to connect and perform RPCs (#5732...

Experimental tool to generate graphs from a dagger journal file (which is experimental itself).

Not ready for prime time, that's why it's a standalone tool (cmd/dagger-graph) rather than integrated with the CLI.

This is built on top of the latest engine features (sub-pipelines, journal, ...). I've been using this to debug my pipelines, thought I'd share.

Usage:

_EXPERIMENTAL_DAGGER_JOURNAL="./journal.log" go run mycode.go
dagger-graph ./journal.log ./gra...

This serves as an index for all the issues related to secrets. If someone takes ownership on this issue, this should start by triaging the issues list below, corresponding to a proposal to add support for secrets.

• [ ] #4289
• [ ] #2550
• [ ] #3323
• [ ] #4339
• [ ] #3442

Improve GraphQL doc with more examples.
Generator templates correctly format examples.

Resolves: #4323
Signed-off-by: Tom Chauveau

Overview

Dagger has a NodeJS SDK. What if it also had a DenoJS SDK?

Deno is a solid alternative to NodeJS, by the creator of NodeJS, and has great traction. It could help gain additional exposure with the kind of forward-thinking developers that tend to enjoy Dagger.

fix #maintainers message

dagger's CI is currently a black box. In order to make any improvements, we first need to measure:

• Tracing
  • See the overall time breakdown for CI runs
• Metrics
  • Which operations are the slowest
  • Trends (is it getting slower, faster, the same, ...)
  • Caching information (is it working, what's the hit ratio, ...)

/cc @gerhard

Because it is a dev dagger-engine that was built from the current source code.

My first instinct was to rename this to dagger-engine-dev, similar to dagger-engine-, but there is garbage collection that uses the dagger-engine- prefix, and I didn't want to refactor that in this context. Yes, I was effectively side-stepping that problem since I didn't want to be pulling too much change at once. That is due a refactoring soon, so no point in digging into it now.

By the way, if you have an e...

WithDevEngine implies that the wrapped container will use the dev engine. This is misleading and results in surprising behaviour, as described in https://github.com/dagger/dagger/pull/4300#issuecomment-1379391184

AdvertiseDevEngine is more accurate: the dev engine is being advertised for any component that is interested in using it, but nothing is enforced. As we discovered, some components will continue using the engine in which they already run (this used to be the stable engine). Th...

What is the issue?

To make sure user get the latest version of the SDK, we should update the installation command :

From:

npm install @dagger.io/dagger --save-dev

To:

npm install @dagger.io/dagger@latest --save-dev

This command can also be run inside an existing project to update dagger SDK version.

cc @vikram-dagger

Closes #4373

Signed-off-by: Vikram Vaswani

AFAIK client.Close() (all languages) shuts down the connection and that's it.

This means we're not properly shutting down the session and there are some side effects. For instance, there's a few pieces of code here and there doing a time.Sleep to make sure all logs are outputted to the terminal.

Proposal:

• All SDKs: Properly shutdown the session on Close() (e.g. terminate the process?)
• Session: Support "clean" shutdown

/cc @sipsma

If applied, this commit updates the Node.js get started guide:

• adds assumption the user has an existing application and provides optional instructions to create
  an example application
• adds sample code for CommonJS applications

Closes #4311

Signed-off-by: Vikram Vaswani

@jpadams pointed out how users could miss clickable method :
#pro7sat message

Those links should be highlighted.

Close to the issue #4378
Signed-off-by: jffarge

Bumps github.com/docker/cli from 23.0.0-rc.1+incompatible to 23.0.0-rc.2+incompatible.

Commits

257ff41 Merge pull request #3958 from thaJeztah/bump_go_1.19.5
b9e1ad3 update to go1.19.5
f163d24 Merge pull request #3956 from thaJeztah/update_btrfs_status
d1f02a2 deprecated: update deprecation for btrfs on CentOS/RHEL 7
4c0a3c3 Merge pull request #3954 from thaJeztah/deprecate_centos7_btrfs
bdc7e37 deprecation: mark btrfs driver as deprecated for CentOS 7 and R...

Problem

Since dagger pulls the engine image from ghcr, it'll try to use a token if present in the ~/.docker/config,json file and i invalid or expired, it'll fail with an error similar to this one:

 go run main.go 
panic: EOF: Error: resolving image digest: GET https://ghcr.io/token?scope=repository%3Adagger%2Fengine%3Apull&service=ghcr.io: DENIED: denied

Which can be difficult for users to troubleshoot.

Alternatives

1 Do nothing.
2 Better error handling a...

Bumps eslint from 8.31.0 to 8.32.0.

Release notes
Sourced from eslint's releases.

v8.32.0
Features

fc20f24 feat: add suggestions for redundant wrapping in prefer-regex-literals (#16658) (YeonJuan)

Bug Fixes

b4f8329 fix: ignore directives for no-fallthrough (#16757) (gfyoung)

Documentation

17b65ad docs: IA Update page URL move (#16665) (Ben Perlmutter)
5981296 docs: fix theme switcher button (#16752) (Sam Chen)
6669413 docs: deploy prerelease docs und...

Bumps prettier from 2.8.2 to 2.8.3.

Release notes
Sourced from prettier's releases.

2.8.3
Support Angular 15.1
🔗 Changelog

Changelog
Sourced from prettier's changelog.

2.8.3
diff
Allow self-closing tags on custom elements (#14170 by @​fisker)
See Angular v15.1.0 release note for details.

// Input
<app-test/>
// Prettier 2.8.2
SyntaxError: Only void and foreign elements can be self closed "app-test" (1:1)
> 1 | <app-test/>...

What is the issue?

If the variable (of type dagger.#Secret) changes, the cache is invalidated.

If I run a build from a Dockerfile and even if the variable changes, the layer is not invalidated.

Log output

No response

Steps to reproduce

Dockerfile

FROM alpine
RUN --mount=type=secret,id=MYSECRET echo

$ MYSECRET=hello docker buildx build --secret id=MYSECRET -t secret-test .
...
=> [internal] load metadata for docker.io/library/alpine...

Bumps @typescript-eslint/parser from 5.47.0 to 5.48.1.

Release notes
Sourced from @​typescript-eslint/parser's releases.

v5.48.1
5.48.1 (2023-01-09)
Note: Version bump only for package @​typescript-eslint/typescript-eslint
v5.48.0
5.48.0 (2023-01-02)
Bug Fixes

website: fix typo (#6285) (3f8d105)

Features

eslint-plugin: specify which method is unbound and added test case (#6281) (cf3ffdd)

v5.47.1
5.47.1 (...

Problem

Many users get confused with their async pipeline.
When should I use await ? Is my pipeline executing ?
The error doesn't give any clue of what's happening.

throw new UnknownDaggerError("Encountered an unknown error while requesting data via graphql", { cause: e });

A better approach

Display an understandable error message if users omit to await the promise.

Closes https://github.com/dagger/dagger/issues/4245

Allows user to have the complete control over the labels of a given container:

• Add labels (withLabel API)
• Remove label (withoutLabel API)
• Print the value of a single label (label API)
• Print all the labels of a container (labels API)

Adds corresponding graphQL tests, SDK codegen and graphQL docs.

The terminology is consistent with other APIs (cf. envVariable), and will help solving inherent docker issue https://gi...

Bumps @typescript-eslint/eslint-plugin from 5.48.1 to 5.48.2.

Release notes
Sourced from @​typescript-eslint/eslint-plugin's releases.

v5.48.2
5.48.2 (2023-01-16)
Note: Version bump only for package @​typescript-eslint/typescript-eslint

Changelog
Sourced from @​typescript-eslint/eslint-plugin's changelog.

5.48.2 (2023-01-16)
Note: Version bump only for package @​typescript-eslint/eslint-plugin

...

What is the issue?

On Windows, the functionality to download the cli if a path is not given, does not work on Windows. This is because some places used within the Bin class for path matching are not consistent with windows paths.

Log output

NodeJS sdk Connect
✔ Should parse DAGGER_SESSION_PORT and DAGGER_SESSION_TOKEN correctly
1) Connect to local engine and execute a simple query to make sure it does not fail
2) throws error
Automatic Provisioned CLI Binar...

This addresses the issue found in #4389.

Did the following:

• separate cli-downloader functionality from Bin class and move it into its own class, CliDownloader
• updates tests

If applied, this commit adds a new quickstart guide covering multiple languages and also adds a link to it in the navigation menu.

Closes #4354

Signed-off-by: Vikram Vaswani

• core: pipeline support for container.rootfs
• core: pipeline support for git.tree

Fixes #4321

Before

dagger.exceptions.ProvisionError: Dagger engine failed to start

After

dagger.exceptions.SessionError: Dagger engine failed to start: Command '/Users/helder/Library/Caches/dagger/dagger-0.3.9 session' returned non-zero exit status 1. Error: failed to run container: docker: Cannot connect to the Docker daemon at unix:///var/run/docker.sock. Is the docker daemon running?.

Signed-off-by: Helder Correia

Bumps beartype from 0.11.0 to 0.12.0.

Release notes
Sourced from beartype's releases.

Beartype 0.12.0
Beartype 0.12.0 expands the infinitely vast (yet mostly empty) universe of @​beartype into the hitherto uncharted realms of configuration, exception identification, Nuitka, typing.NamedTuple, and Python 3.11. Also, other things were done. We swear it!
This minor release resolves 16 issues and merges 2 pull requests. Noteworthy changes include:
Compati...

Bumps @typescript-eslint/parser from 5.48.1 to 5.48.2.

Release notes
Sourced from @​typescript-eslint/parser's releases.

v5.48.2
5.48.2 (2023-01-16)
Note: Version bump only for package @​typescript-eslint/typescript-eslint

Changelog
Sourced from @​typescript-eslint/parser's changelog.

5.48.2 (2023-01-16)
Note: Version bump only for package @​typescript-eslint/parser

Commits

46a7c73 chore: publish v5....

Signed-off-by: Marcos Lilljedahl

Signed-off-by: Miranda Carter

Problem

When implementing https://github.com/dagger/dagger/pull/4387 tests using the Go SDK, we realized that SDKs fail to execute some endpoints that do work as graphQL queries.

After talking with @vito, it turns out that this touches all schemas that return arrays of custom structs:

• envVariables
• labels (future implem...

Signed-off-by: Helder Correia

Ruff, as a linter, is crazy fast but the biggest advantage for dagger is cutting down on dependencies while getting more validations in return.

What are you trying to do?

I'm trying to build a set of libraries on top of the Go SDK to provide higher level interfaces to Dagger making it easier for people to work with it.

Some of those libraries/features may require to encapsulate dagger.Client or dagger.Container in custom interfaces. For example: I have a custom Client that detects if Dagger is running on GitHub Actions and forwards all GitHub related environment variables automatically to all Containers.

In order t...

• engine: bump buildkit to v0.11.1
• ci: bump go sdk to 0.4.3

Problem

Dagger can create new secrets from the contents of an artifact or container (File { secret }). But the resulting secret is then leaked in the cache. For this reason, File { secret } is currently considered unsafe. The risk can be mitigated, for example by only using this method for secrets that carry an acceptable risk (ie not production credentials), rigorously scoping and rotating them, limiting cache sharing, etc. B...

Bumps github.com/moby/buildkit from 0.11.0-rc3 to 0.11.1.

Release notes
Sourced from github.com/moby/buildkit's releases.

v0.11.1
Welcome to the 0.11.1 release of buildkit!
This is a pre-release of buildkit
Please try out the release binaries and report any issues at
https://github.com/moby/buildkit/issues.
Notable changes

Builtin Dockerfile frontend has been updated to 1.5.1, fixing possible panic in certain warning condition #3505
Fix possible hang whe...

Bumps axios from 1.2.2 to 1.2.3.

Release notes
Sourced from axios's releases.

1.2.3
Release notes:
Bug Fixes

types: fixed AxiosRequestConfig header interface by refactoring it to RawAxiosRequestConfig; (#5420) (0811963)

Contributors to this release

Dmitriy Mozgovoy

Changelog
Sourced from axios's changelog.

1.2.3 (2023-01-10)
Bug Fixes

types: fixed AxiosRequestConfig header interface by refactoring it to RawAxiosRequestConfig; (#5420) (0811963)

Co...

Bumps poethepoet from 0.17.1 to 0.18.1.

Release notes
Sourced from poethepoet's releases.

v0.18.1
Fixes

Fix error when running switch tasks or tasks with the 'uses' option in dry-run mode #115
Fix handling of backslashes for escaping when parsing envfiles #118

Full Changelog: https://github.com/nat-n/poethepoet/compare/v0.18.0...v0.18.1
v0.18.0
Enhancements

Add new expr task type for evaluating a single python expression as a task.

Full Changelog: ...

Bumps amplitude-js from 8.21.3 to 8.21.4.

Release notes
Sourced from amplitude-js's releases.

v8.21.4
8.21.4 (2023-01-18)
Bug Fixes

remove events when 200, no need to check response (#572) (5b52d16)
upgrade dependencies to resolve dependabot vulnerability alerts (#567) (9207b46)

Changelog
Sourced from amplitude-js's changelog.

8.21.4 (2023-01-18)
Bug Fixes

remove events when 200, no need to check response (#572) (5b52d16)
upgrade d...

Bumps pytest from 7.2.0 to 7.2.1.

Release notes
Sourced from pytest's releases.

7.2.1
pytest 7.2.1 (2023-01-13)
Bug Fixes

#10452: Fix 'importlib.abc.TraversableResources' deprecation warning in Python 3.12.
#10457: If a test is skipped from inside a fixture, the test summary now shows the test location instead of the fixture location.
#10506: Fix bug where sometimes pytest would use the file system root directory as rootdir <rootdir>{.interpret...

Bumps flake8-bugbear from 22.12.6 to 23.1.17.

Release notes
Sourced from flake8-bugbear's releases.

23.1.17

Rename B028 to B907, making it optional/opinionated.

23.1.14

Add B906: visit_ function with no further calls to a visit function. (#313)
Add B028: Suggest !r when formatted value in f-string is surrounded by quotes. (#319)

Commits

4435548 Update README + version for 23.1.17 release
91188aa Rename B028 to B907, making it optional/opini...

This will add an HTML id attribute to each field in each type, and wrap them in an anchor tag to make the fields clickable and shareable.

Signed-off-by: Julián Cruciani

We need to have a video that is short and sweet. Most of our videos are over 10 minutes long.

We should create a video like this pulumi example and call it " What is CI/CD as Code?" It should be at most 5 minutes. We should point out that they can use various SDKs.

Example - https://www.youtube.com/watch?v=6f8KF6UGN7g

Once this is done, I will add it somewhere in the docs intro and in the Dagger GitHub README like Pulumi's.

add straightforward getting started section and add trademark link

Signed-off-by: Miranda Carter

Problem

As reported by @rawkode, Dagger currently cannot mark secret values as sensitive. As a result, it cannot scrub them out of Dagger's various output streams, the way it could in the 0.2 CUE APIs.

Below is the known status of this problem, broken down by source of the sensitive value:

Problem

Dagger can do things that no other CI/CD platform can, thanks to its programmable nature. But at the same time, there are very basic things that every CI/CD platform can do, except Dagger. For example:

• Every CI/CD platform (except Dagger) can, given a directory, detect whether it is configured to use that platform
• Every CI/CD platform (except Dagger) can, given a directory, discover available pipelines and how to run them
• Every CI/CD platform (except Dagger) can, gi...

Define an interface and common way to format type into the SDK language.
This creates a standard implementation for our current and future SDKs.

Signed-off-by: Tom Chauveau

Bumps spectaql from 2.0.3 to 2.0.4.

Changelog
Sourced from spectaql's changelog.

2.0.4

Update dependencies.
Fix typos in documentation.

Commits

See full diff in compare view

[](https://docs.github.com/en/github/managing-security-vulnerabilities/abou...

Additional changes identified from #4390

• separate cli-downloader functionality from Bin class and move it into its own class, CliDownloader
• updates tests

Hi @aluzzardi, I saw that you were using D2 for https://github.com/dagger/dagger/tree/main/cmd/dagger-graph, looks great!

I wanted to just bring up that we have an API that can make programmatic generation of D2 diagrams a lot easier/simpler to manage/debug than writing the script with fmt lines: https://pkg.go.dev/oss.terrastruct.com/d2@v0.1.5/d2oracle

Here's a blog post with runnable code on how it might be used: https://terrastruct.com/blog/post/generate-diagrams-programmatically/. A...

This issue is being created to document the research behind the new quickstart that will live inside docs.dagger.io.

While trying to run this:

import { connect } from "@dagger.io/dagger"

// initialize Dagger client
connect(async (client) => {

  const contextDir = client.host().directory(".")

  const image = await client.container().build(contextDir).publish("ttl.sh/foo")

  // print output
  console.log("Image pushed to" + image)
}, { LogOutput: process.stderr })

with a simple Dockerfile it fails to run with the following error:

#10 ERROR: failed to push ttl...

Signed-off-by: jffarge

Bumps oss.terrastruct.com/d2 from 0.1.5 to 0.1.6.

Release notes
Sourced from oss.terrastruct.com/d2's releases.

v0.1.6
Many meaningful quality of life improvements and bug fixes, along with a few small features. Overall, a stabilizing set of changes, while some huge features are brewing in the background for the next release!
Thank you to the new contributors that have been joining us. If you want to get involved, there's lots of issues tagged with &quot...

Signed-off-by: Erik Sipsma

The state path changed recently, this catches up the doc with it. Hit by user here: #1065955877678501919 message

If you connect to an existing dagger session (e.g. via dagger-in-dagger or via dagger run) and specify a workdir it's ignored and instead the workdir will be the workdir of the session process.

I think the very minimum would be to throw an error if this happens (a workdir other than the one of the session is specified) just to at least replace the confusing behavior w/ annoying but comprehensible behavior.

It also might be possible to actually allow different clients to have different...

What is the issue?

We should provide documentation/guidance for effective methods of abstracting + reusing (within a repo or org):

• pipeline components. wrappers for building parts of a container that are reused across multiple parts of a pipeline
• subpipelines. Reusing entire subpipelines across multiple pipelines like a github action
• entire pipelines. Reuse common pipelines across multiple repos without reimplementing

Problem

Dagger can safely load static secrets, by accessing a snapshot of the client's environment variables. But there is no safe way do load dynamic secrets. This limits the use of Dagger in production.

In this context, a dynamic secret is a secret that requires executing arbitrary code in order to be retrieved. Examples of dynamic secrets include:

• Secrets stored in an encrypted file, that must be loaded with a tool such as gpg, age or sops
• Secrets stored in a sec...

Attempt to solve the broken workflow, just bumped the version to the latest.

cc @mircubed

Create an example using a GraphQL client to write a CI pipeline in a language we don't yet have an SDK for such as Java, Rust, or Ruby

Bumps github.com/docker/cli from 23.0.0-rc.1+incompatible to 23.0.0-rc.3+incompatible.

Commits

e1152b2 Merge pull request #3977 from alirostami01/master
be30cb3 Fix section docker ps --size
f7c322e Merge pull request #1900 from yuchengwu/8831-doc-user-restrict
5d04b1c note --user args usage restriction
8627a6d Merge pull request #3971 from thaJeztah/sync_cobra_streams
fe694e8 Merge pull request #3973 from thaJeztah/no_escape
1493806 Merge pull request #3968 ...

Bumps @typescript-eslint/eslint-plugin from 5.48.2 to 5.49.0.

Release notes
Sourced from @​typescript-eslint/eslint-plugin's releases.

v5.49.0
5.49.0 (2023-01-23)
Bug Fixes

typescript-estree: fix typo in FAQ link (#6346) (eefc578)

Features

eslint-plugin: [naming-convention] add support for #private modifier on class members (#6259) (c8a6d80)

Changelog
Sourced from @​typescript-eslint/eslint-plu...

Bumps @typescript-eslint/parser from 5.48.2 to 5.49.0.

Release notes
Sourced from @​typescript-eslint/parser's releases.

v5.49.0
5.49.0 (2023-01-23)
Bug Fixes

typescript-estree: fix typo in FAQ link (#6346) (eefc578)

Features

eslint-plugin: [naming-convention] add support for #private modifier on class members (#6259) (c8a6d80)

Changelog
Sourced from @​typescript-eslint/parser's changelog.

5.49.0 (20...

What is the issue?

The Dagger license dates are not current

Several of the Dagger licenses to 2022 and need to be updated for 2023.

Licenses to be updated

• [ ] Dagger - https://github.com/dagger/dagger/blob/main/LICENSE
• [ ] Go SDK - https://github.com/dagger/dagger-go-sdk/blob/main/LICENSE
• [ ] Node.js SDK - https://github.com/dagger/dagger/blob/main/sdk/nodejs/LICENSE
• [ ] Python SDK - https://github.com/dagger/dagger/blob/main/sdk/python/LICENSE
• [ ] Sphinx confi...

We need a new poll or to update this one since the team has already publicly delivered on several and launched the GraphQL API (this is the API that drives the language-specific SDKs).

Docs

• Node.js / Typescript / Javascript
• Python
• CLI
• GraphQL API

I vote for Rust next. (And I did vote for it.) PowerShell would be compelling as well. The CL...

Amplitude has been replaced by Posthog and should be completely remove from the docs website.

Signed-off-by: jffarge

What is the issue?

When the Node SDK reference documentation is generated, the following warnings are seen:

/sdk/nodejs/api/client.gen.ts:277:17 - warning Encountered an unescaped open brace without an inline tag

277     * The format is {os}/{platform}/{version} (e.g. darwin/arm64/v7, windows/amd64, linux/arm64).

/sdk/nodejs/api/client.gen.ts:277:20 - warning Unmatched closing brace

277     * The format is {os}/{platform}/{version} (e.g. darwin/arm64/v7, windows/amd64, l...

What is the issue?

Summary

There are several items in discovery now for how to improve how Dagger works with secrets. This issue clarifies why we need documentation for working with secrets and provides a rough scaffold for how that content.

Why this matters

Secrets support in Dagger allows you to utilize confidential information -- such as passwords, API keys, SSH keys, etc -- when running your Dagger Plans, without
 expos...

Close to #4434
Curly braces were generating warnings while generating reference documentation.

Signed-off-by: jffarge

Currently stuck, as the codegen doesn't seem happy with enums yet

Extend API to manage cache sharing mode, when mounting cache volumes

Signed-off-by: Jenn Allen

Fix for https://github.com/dagger/dagger/issues/4432 / #4432

Bumps axios from 1.2.3 to 1.2.4.

Release notes
Sourced from axios's releases.

Release v1.2.4
Release notes:
Bug Fixes

types: renamed RawAxiosRequestConfig back to AxiosRequestConfig; (#5486) (2a71f49)
types: fix AxiosRequestConfig generic; (#5478) (9bce81b)

Contributors to this release

Dmitriy Mozgovoy
Daniel Hillmann

Changelog
Sourced from axios's changelog.

1.2.4 (2023-01-22)
Bug Fixes

types: renamed RawAxiosRequestConfig back to AxiosRequestCo...

Bumps ruff from 0.0.228 to 0.0.231.

Release notes
Sourced from ruff's releases.

v0.0.231
What's Changed

fix: issue D401 only for non-test/property functions and methods by @​scop in charliermarsh/ruff#2071
feat: flake8-use-pathlib PTH100-124 by @​sbrugman in charliermarsh/ruff#2090
refactor: remove redundant enum by @​sbrugman in charliermarsh/ruff#2091
feat: Implement TRY201 by @​alonme in charliermarsh/ruff#2073
Avoid nested-if violations when out...

Signed-off-by: Marcos Lilljedahl

This library was used in a previous SDK version
It's not used anymore

Signed-off-by: jffarge

Bumps ua-parser-js from 0.7.31 to 0.7.33.

Changelog
Sourced from ua-parser-js's changelog.

Version 0.7.31 / 1.0.2

Fix OPPO Reno A5 incorrect detection
Fix TypeError Bug
Use AST to extract regexes and verify them with safe-regex

Version 0.7.32 / 1.0.32

Add new browser : DuckDuckGo, Huawei Browser, LinkedIn
Add new OS : HarmonyOS
Add some Huawei models
Add Sharp Aquos TV
Improve detection Xiaomi Mi CC9
Fix Sony Xperia 1 III misidentified as Acer...

Related: https://github.com/dagger/dagger/pull/4440

Signed-off-by: Helder Correia

Context

When implementing #4437 , in order to have autocompletion, I relied on the GraphQL enum type:

enum CacheSharingMode {
  SHARED
  PRIVATE
  LOCKED
}

Everything works on raw GraphQL queries, but whenever I tried generating the SDK code, it failed for all of them. The enum codegen implementation for NodeSDK has been added by @dolanor, directly on #4437 . @dolanor ...

What are you trying to do?

Problem

Dagger enables developers to write pipelines in the language of their choice. Today, Dagger includes SDKs in these development languages: Go, Node.js (Javascript and Typescript), and Python. Dagger also supports running pipelines via a CLI and a GraphQL API. However, it still needs to support authoring pipelines in Rust, one of the most popular languages for the last several years.

Hypothesis

Rust is one of the most popular and desired d...

Closes #4445

Signed-off-by: Helder Correia

Create an example pipeline that uses conditionals based on git changes or other inputs to determine what to execute

It would be useful to be able to query the digest of a directory or container. A typical use case would be to use that digest as a tag when pushing an image to a docker registry - thus ensuring that a given version of an image is only pushed to one tag.

cc @kpenfound

What is the issue?

Docs page

URL: https://docs.dagger.io/sdk/nodejs/783645/get-started#step-4-test-against-multiple-nodejs-versions

Issue

If you copy-pasta the Node.js multibuild example for common JavaScript, the code does not run. The two preceding examples DO work.

Cause

The example does not include the final parentheses ( ) required by JavaScript for the function call. I originally did not have the linter enabled when I tried to run the example. As a result, runni...

Signed-off-by: Jenn Allen

Fix for #4451. This update adds missing parentheses to the multibuild example for CommonJS JavaScript. Without these, the script does not run.

Fixes https://github.com/dagger/dagger/issues/4085
Merges existing env vars with the container env vars.

Fixes https://github.com/dagger/dagger/issues/4085
Merges existing env vars with the container env vars.

Problem

Opening a Dagger session from a client library takes too long.

This has been reported twice in the last week.

Solution

Make it faster :)

What are you trying to do?

GraphiQL supports tabs: https://github.com/graphql/graphiql/releases/tag/graphiql%401.8.0.

Here's a tabs demo in action.

Why is this important to you?

Enabling tabs would provide a great user experience for testing the GraphQL API. Rather than putting multiple operations into one tab and then clicking the Play button to select the operation to run, you could enter each operation on its distinct tab.

How are y...

What is the issue?

I was trying dagger with the Get Started
page. The failing function is the Export function.

Log output

input:1: container.from.withMountedDirectory.withWorkdir.withExec.directory.export destination "C:\Users\***\GolandProjects\FilesManagement\build" escapes workdir

Steps to reproduce

code:
`func daggerBuild() error {
ctx := context.Background()

client, er...

This PR was auto-generated.

Bumps ruff from 0.0.231 to 0.0.235.

Release notes
Sourced from ruff's releases.

v0.0.235
Summary
Follow-up release to v0.0.234 to fix two non-fatal issues related to CLI output.
(No new rules or functionality.)
What's Changed

Avoid duplicate CI runs triggered by pushes to pull requests by @​andersk in charliermarsh/ruff#2178
Restore single-file license by @​charliermarsh in charliermarsh/ruff#2180
Windows compatibility by @​sbrugman in charliermarsh...

@pellared has done a fantastic job on Goyek and we've had some great discussion on this in the past. I think it adheres to a more "pure" Go form that is very similar in style to Go tests. The catch is because it does less "magic", it results in effort, albeit not a lot, to generate reusable shared libraries to use across multiple repos. Definitely feels like more idiomatic Go. ⚡

The biggest difference for me personally was that Mage does some "magic" in discovering tasks via AST and the f...

Noticed a few things during the release today:

1. We need a note in the instructions about the engine bump PR workflows not running automatically
2. The SDK tests being run manually have been automated on both macos and linux, there's no need to run them anymore
3. We didn't have any explicit instructions on verifying the sdk publishes worked, added those

I ran through these quickly after a release and couldn't compile the typescript version due to the node var not being of type string when provided as the id of a container.

Fixing this by just not using IDs; you can just use node directly.

Signed-off-by: Erik Sipsma

It would be amazing to have a way to add "breakpoints" to the DAG, and interactively inspect the state at the given point (via an interactive shell for example).

This has been requested and proposed many times, and we even saw a proof-of-concept by @aluzzardi :) This issue is for tracking and lobbying purposes 😄

When viewing our docs in dark mode, words formatted as code aren't readable:

Seems to be the same on at least Firefox and Chrome. This used to work for me so I guess something changed relatively recently.

cc @slumbering

Related to: #3375

Signed-off-by: Tom Chauveau

From docs website build

1:19:42 PM: Found example to be rendered for pipeline
1:19:42 PM: Error processing the example for pipeline. Error: ENOENT: no such file or directory, open '/opt/build/repo/website/docs-graphql/data/examples/queries/pipeline/gql.md'

https://docs.dagger.io/api/reference/#query-pipeline

fixes #4466

Signed-off-by: Jeremy Adams

while not "idiomatic" to Go, the auto-discover and import functions based on a package import makes it easier to share and reuse tasks without having extra registration effort.

It is still possible with goyek. Yet it is not forced and it is not [well] documented 😉 One can define tasks using goyek.Define in shared packages and then they can be auto-imported using the import _ package/path/syntax.

Close to

• #4464

Signed-off-by: jffarge

What is the issue?

When platform_variants of the type Optional[Sequence[Container]] is passed to Container.export and Container.publish the the following error is raised:

TypeError: Cannot convert value to AST: .

More information in Discord: #python-sdk-dev🐍 message

Log output

No response

Steps to reproduce

import asyncio

import dagger


async def main():
    cfg = dag...

What is the issue?

Now that we're on conda we need to update docs to use it (e.g., links, installation, badge).

• https://github.com/dagger/dagger/issues/3942

Fixes #4469

Signed-off-by: Helder Correia

Bumps ruff from 0.0.231 to 0.0.236.

Release notes
Sourced from ruff's releases.

v0.0.236
What's Changed
Rules

feat: implement TRY002 and TRY003 by @​karpa4o4 in charliermarsh/ruff#2135
Implementing TRY400 by @​Flowake in charliermarsh/ruff#2115
Implement some rules from flake8-logging-format (G) by @​edgarrmondragon in charliermarsh/ruff#2150

Settings

Add strictness setting for flake8-typing-imports by @​charliermarsh in charliermarsh/ruff#2221
Im...

Bumps @docusaurus/core from 2.2.0 to 2.3.0.

Release notes
Sourced from @​docusaurus/core's releases.

2.3.0 (2023-01-26)
:rocket: New Feature

docusaurus-theme-translations

#8541 feat(theme-translations): default translations for Slovenian (sl-SI) (@​MatijaSi)

docusaurus-plugin-content-blog

#8378 feat(blog): add options.createFeedItems to filter/limit/transform feed items (@​johnnyreilly)

docusaurus-theme-classic, ...

Bumps @docusaurus/preset-classic from 2.2.0 to 2.3.0.

Release notes
Sourced from @​docusaurus/preset-classic's releases.

2.3.0 (2023-01-26)
:rocket: New Feature

docusaurus-theme-translations

#8541 feat(theme-translations): default translations for Slovenian (sl-SI) (@​MatijaSi)

docusaurus-plugin-content-blog

#8378 feat(blog): add options.createFeedItems to filter/limit/transform feed items (@​johnnyr...

Bumps @docusaurus/theme-mermaid from 2.2.0 to 2.3.0.

Release notes
Sourced from @​docusaurus/theme-mermaid's releases.

2.3.0 (2023-01-26)
:rocket: New Feature

docusaurus-theme-translations

#8541 feat(theme-translations): default translations for Slovenian (sl-SI) (@​MatijaSi)

docusaurus-plugin-content-blog

#8378 feat(blog): add options.createFeedItems to filter/limit/transform feed items (@​johnnyreil...

Problem

We have two places for the community to give feedback and ask questions: Discord and Github discussions. There should be more bridges between them.

Solution

Pin a post on our github discussions, referencing and linking to our discord server.

Suggested by @d3rp3tt3 , thank you Jenn!

What is the issue?

Docs Page

URL: https://devel.docs.dagger.io/api/254103/build-custom-client
In the repo: https://github.com/dagger/dagger/edit/main/docs/current/api/254103-build-custom-client.md

The Issue

The Rust and PHP examples for creating a custom GraphQL client to use Dagger do not include the steps to install the languages. As a result, when you run the following example to create the starter projects, you get errors in the terminal.

Rust

Command
`cargo...

We do not want to send a GITHUB_TOKEN with write permissions to repository forks. This would allow anyone that forks our repository to read the GITHUB_TOKEN & make write changes to our repository - dagger/dagger - with this token. That would be a security vulnerability, which is why this config option is disabled:

While we could restrict write permissions to pull-requests: write only, we would need to do it across all workflows, and also remember to do the same for any new workfl...

What is the issue?

This task is to transfer the repository from https://github.com/vikram-dagger/hello-dagger to https://github.com/dagger/hello-dagger so that it resides in the organization's location rather than a personal one.

Bumps github.com/containerd/containerd from 1.6.14 to 1.6.16.

Release notes
Sourced from github.com/containerd/containerd's releases.

containerd 1.6.16
Welcome to the v1.6.16 release of containerd!
The sixteenth patch release for containerd 1.6 includes various bug fixes and updates.
Notable Updates

Fix push error propagation (#7990)
Fix slice append error with HugepageLimits for Linux (#7995)
Update default seccomp profile for PKU and CAP_SYS_NI...

Bumps eslint from 8.32.0 to 8.33.0.

Release notes
Sourced from eslint's releases.

v8.33.0
Features

2cc7954 feat: add restrictDefaultExports option to no-restricted-exports rule (#16785) (Nitin Kumar)

Documentation

17f4be2 docs: Fix examples in no-multiple-empty-lines rule (#16835) (jonz94)
9c7cfe3 docs: 'Source Code' content in 'Set up Development Environment' page (#16780) (Ben Perlmutter)
ede5c64 docs: Custom processors page (#16802) (Ben Perlmutter)...

Bumps pytest-subprocess from 1.4.2 to 1.5.0.

Release notes
Sourced from pytest-subprocess's releases.

1.5.0
Features

#109: Match also os.PathLike.
#105: Add program matcher.

Other changes

#110: Produce TypeError on Win Py<3.8 for Path args.

Changelog
Sourced from pytest-subprocess's changelog.

1.5.0 (2023-01-28)
Features

• `#109 <https://github.com/aklajnert/pytest-su...

Bumps ruff from 0.0.231 to 0.0.237.

Release notes
Sourced from ruff's releases.

v0.0.237
What's Changed
Breaking Changes
--explain, --clean, and --generate-shell-completion are now implemented as subcommands (#2190):
ruff . # Still works! And will always work.
ruff check . # New! Also works.
ruff --explain E402 # Still works.
ruff rule E402 # New! Also works. (And preferred.)
Oops! The command has to come first.
ruff --format json ...

Right now ghcr.io is returning 500 errors which is resulting in any calls following the default provision path to fail on this line: https://github.com/sipsma/dagger/blob/19d61667f361fd925a2f8526823778e1b3cc3384/internal/engine/docker.go#L50-L50

Instead, if we get an error there we should have some fallback codepath that just tries to use any local engine that already exists.

Verify if a thrown error is a connection refused which is the error thrown when a user calls a computed function without using await.
In that case, it will display a clear error message so the user can await the function.

Resolves: #4386

Signed-off-by: Tom Chauveau

Closes #4458

Context

When using .Export(), workdir scope is checked using strings.HasPrefix().

However, on Windows:
workdir and dest have different separators, making this comparison break.

We now rely on filepath.ToSlash to make sure dest and wd + "/" are resolving to the comparable path

Repro

Given this repro, on Windows:

package main

import (
        "context"
        "fmt"
        "os"

        "dagger.io/dagger"
)

func main() {
...

So that we can troubleshoot when logs & traces don't make sense.

This is a follow-up to:

• https://github.com/dagger/dagger/pull/4478
• https://github.com/dagger/dagger/pull/4340

Signed-off-by: Miranda Carter

If we cannot contact the remote repository, try to first use an already existing docker dagger engine.

If there none failed

Signed-off-by: laurent Grondin

What are you trying to do?

This feature has been requested by the user in Discord YourTechBud

Using dagger to build some code and images. I want to restrict the cpu and memory allocated to this. How can I do that?

Why is this important to you?

N/A

How are you currently working around this?

N/A

This PR will change the layout of the docs in the Quickstart that contain an `` by placing it into the right.

With this change, the user will not have to scroll to the editor while reading the documentation, as everything will be in the viewport.

TODO:

• [ ] Responsiveness
• [ ] Move tabs to the top of the editor

Bumps typescript from 4.9.4 to 4.9.5.

Release notes
Sourced from typescript's releases.

TypeScript 4.9.5
For release notes, check out the release announcement.
Downloads are available on:

npm
NuGet package

Changes:

69e88ef5513a81acf69ec78f4af1f927da0d0584 Port ignore deprecations to 4.9 (#52419)
daf4e817a18def96b70ac34703b158ff0e6d58df Port timestamp fix to 4.9 (#52426)

Commits

ccf3d3c Bump version to '4.9.5' and LKG.
69e88ef Port ignore de...

Bumps ruff from 0.0.231 to 0.0.238.

Release notes
Sourced from ruff's releases.

v0.0.238

What's Changed
⚠️ Breaking Changes ⚠️
select, extend-select, ignore, and extend-ignore have new semantics (#2312)
Previously, the interplay between select and its related options could lead to unexpected behavior. For example, ruff --select E501 --ignore ALL and ruff --select E501 --extend-ignore ALL behaved differently. (See #2312 for more examples.)
The new se...

Bumps @typescript-eslint/parser from 5.49.0 to 5.50.0.

Release notes
Sourced from @​typescript-eslint/parser's releases.

v5.50.0
5.50.0 (2023-01-31)
Bug Fixes

ast-spec: a JSXEmptyExpression is not a possible JSXExpression (#6321) (4b27777)
eslint-plugin: [ban-ts-comment] counts graphemes instead of String.prototype.length (#5704) (09d57ce)
eslint-plugin: [prefer-optional-chain] fix ThisExpression and Privat...

Bumps typescript from 4.9.4 to 4.9.5.

Release notes
Sourced from typescript's releases.

TypeScript 4.9.5
For release notes, check out the release announcement.
Downloads are available on:

npm
NuGet package

Changes:

69e88ef5513a81acf69ec78f4af1f927da0d0584 Port ignore deprecations to 4.9 (#52419)
daf4e817a18def96b70ac34703b158ff0e6d58df Port timestamp fix to 4.9 (#52426)

Commits

ccf3d3c Bump version to '4.9.5' and LKG.
69e88ef Port ignore de...

Bumps @typescript-eslint/eslint-plugin from 5.49.0 to 5.50.0.

Release notes
Sourced from @​typescript-eslint/eslint-plugin's releases.

v5.50.0
5.50.0 (2023-01-31)
Bug Fixes

ast-spec: a JSXEmptyExpression is not a possible JSXExpression (#6321) (4b27777)
eslint-plugin: [ban-ts-comment] counts graphemes instead of String.prototype.length (#5704) (09d57ce)
eslint-plugin: [prefer-optional-chain] fix This...

This commit upgrades Docusaurus to 2.3.0 and fixes errors in the yarn.lock file arising from the auto-upgrade of the mermaid component by dependabot. See https://discord.com/channels/707636530424053791/1070067396196454481 and https://github.com/dagger/dagger/commit/ba9b44256337d68f2cfd9f55ffc7103eaed212c2

In the case of ./hack/make engine:test running this seems to be unnecessary. In other words, all tests pass without a dev engine container.

Tasks that need it can either declare it as a dependency, or we can invoke it explicitly if required, e.g.

    ./hack/make engine:dev
    ./hack/make 

More importantly, running both ./hack/make engine:dev and ./hack/make engine:test and feeding data into the same journal.log results in telemetry that doesn't make sense. This ...

After a quick sync with @marcosnils, we realized the iframes of the embeded API Playground instances don't share localstorage, even if they are the same domain.
If we visit the quickstart, login, and then switch the language, the login prompt appears again unless we refresh the page.

• Remove step to cd into the ci directory since it's not required

Signed-off-by: Marcos Lilljedahl

[User mentioned on Discord](#1070089909328674847 message):

Solely because I've spent a good bit of time on this for my own experiments replicating parts of a Gitlab yml pipeline in Dagger, a guide on 'Working with Secrets & Environment Variables' is going to help a lot of curious people. Every company's CICD pipeline uses environment variables and secrets one way or another, whether it's accounts, environments, feature testing, ...

Reimplements a customer RegistryAuth provider that extends the current DockerRegistry auth to integrate an in memory map storage.
Extends container GraphQL API with queries to add or remove registry credentials.

Resolves: #3138
Resolves: #4242
Resolves: #4310

Signed-off-by: Tom Chauveau

This utilises distinct empty types in TS to make the TS compiler recognise custom scalar types as distinct. For example,

type ContainerID = string & {__ContainerID: never}

Will result in a type error if a user passes a regular string into a function accepting this type (the dagger SDK has since changed its arg, but the type benefit works the same way):

async function container(id?: ContainerID): Promise {}

container('alpine:latest') // this will throw a type err...

fixes #4163

• install and configure CNI plugins in Engine image
• configure DNS for container-to-container addressing
• extend Container API for retrieving hostname/addresses

TODO:

• [ ] complete container API for exposing ports
• [ ] health checking (port probe, maybe wait for stdout)
• [ ] start dependent services just-in-time, detach when done
• [ ] extend just-in-time service lifecycle to container.File, container.Directory, etc

This commit adds various quickstart fixes

Signed-off-by: Vikram Vaswani

Bumps github.com/docker/cli from 23.0.0-rc.1+incompatible to 23.0.0-rc.4+incompatible.

Commits

e92dd87 Merge pull request #3996 from laurazard/skip-broken-credentials
9e3d5d1 Fix issue where one bad credential helper causes none to be returned
3ae101f Merge pull request #3991 from dvdksn/docs/refactor-docs-dir
3a11830 Merge pull request #3990 from jedevc/manifest-oci
1e3622c docs: move doc generation scripts to subdir
4a500f6 Merge pull request #3986 from Ak...

Bumps black from 22.12.0 to 23.1.0.

Release notes
Sourced from black's releases.

23.1.0
Highlights
This is the first release of 2023, and following our stability policy, it comes with a number of improvements to our stable style, notably improvements to empty line handling and the removal of redundant parentheses in several contexts.
There are also many changes to the preview style; try out black --preview and give us feedback to help us set the stable style ...

Bumps ruff from 0.0.231 to 0.0.239.

Release notes
Sourced from ruff's releases.

v0.0.239

What's Changed
Rules

[pyupgrade] Implement import-replacement rule (UP035) by @​colin99d in charliermarsh/ruff#2049
[flake8-raise] Add Plugin and RSE102 Rule by @​saadmk11 in charliermarsh/ruff#2354
[flake8-quotes] Allow implicit multiline strings with internal quotes to use non-preferred quote by @​charliermarsh in charliermarsh/ruff#2416

Documentation

Add a...

Bumps sass from 1.57.1 to 1.58.0.

Release notes
Sourced from sass's releases.

Dart Sass 1.58.0
To install Sass 1.58.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.
Changes

Remove sourcemap comments from Sass sources. The generated sourcemap comment for the compiled CSS output remains unaffected.

Fix a bug in @extend logic where certain selectors with three or more combinators ...

What is the issue?

I was just trying the API Playground and catched a little bug in autocompletion hints.

Issue

https://user-images.githubusercontent.com/19599150/216127316-50da4135-6b76-4e31-8a12-3f536494623e.mov

Expected
The hints do not overlap with other elements. [Graphql.org example](https://graphql.org/swapi-graphql?query=%23 Welcome to GraphiQL %23 %23 GraphiQL is an in-browser tool for writing%2C validating%2C and %23 testing%2...

Warning Merge after https://github.com/dagger/dagger/pull/4498

This was not worth failing the engine / test job for:
https://github.com/dagger/dagger/actions/runs/4068033458/jobs/7006095804#step:9:38

Provide a definitive guide on how to run Dagger on Github Actions self-hosted runners.

Provide a definitive guide on how to run Dagger on CircleCI self-hosted runners.

Provide a definitive guide on how to run Dagger on Gitlab CI self-hosted runners.

User requested the ability to get the SHA of the image that was pulled as part of Container.From in order to include it in an SBOM they are generating.

This is simple to implement, the harder part is deciding on the API. We can just have a imageRef field in Container, but if you modify the container (i.e. call With*) should we just return the same SHA as was pulled originally? Or should we error out? Or recalculate the SHA (very expensive and raises other questions)?

My immediat...

Bumps github.com/docker/cli from 23.0.0-rc.1+incompatible to 23.0.0+incompatible.

Commits

e92dd87 Merge pull request #3996 from laurazard/skip-broken-credentials
9e3d5d1 Fix issue where one bad credential helper causes none to be returned
3ae101f Merge pull request #3991 from dvdksn/docs/refactor-docs-dir
3a11830 Merge pull request #3990 from jedevc/manifest-oci
1e3622c docs: move doc generation scripts to subdir
4a500f6 Merge pull request #3986 from Akihiro...

Bumps ruff from 0.0.231 to 0.0.240.

Release notes
Sourced from ruff's releases.

v0.0.240

What's Changed
Rules

[pyupgrade]: Remove outdated sys.version_info blocks by @​colin99d in charliermarsh/ruff#2099
[flake8-self] Add Plugin and Rule SLF001 by @​saadmk11 in charliermarsh/ruff#2470
[pylint] Implement pylint's too-many-statements rule (PLR0915) by @​chanman3388 in charliermarsh/ruff#2445

Settings

[isort] Support forced_separate by @​akx in char...

• Added entrypoint script to enable cgroupv2 nesting

Signed-off-by: Marcos Lilljedahl

TODO:

• [ ] Integrate with dagger CLI (e.g. dagger run)
  • It's currently a separate main.go that ingests a journal log (easier for development -- this task should be done last)
• [ ] Pagination for the tree list
  • Currently all breaks loose when there's more items in the list that can be displayed on screen
• [ ] Scrolling through logs is broken
• [ ] "Follow" mode sometimes break (e.g. stuck on an item)
• [ ] Color palette is inconsistent -- this should have a set of const...

What is the issue?

From @d3rp3tt3 : I ran into an error when I tried to follow one step of the Google Cloud example: https://docs.dagger.io/sdk/nodejs/620941/github-google-cloud#appendix-a-create-a-github-repository-with-an-example-express-application. I had to add the -e flag before the expression so that sed would take the command.

Updated command: sed -i -e 's/Express/Dagger/g' routes/index.js

Discord: #general message...

What is the issue?

From @d3rp3tt3 :

I am stuck on step 4, "Test the Dagger pipeline on the local host." Specifically, when I run the pipeline, it mostly succeeds, but the container fails to start. Here are the relevant snippets from the Google Cloud logs for the service. The key message looks to be: "terminated: Application failed to start: Failed to create init process: failed to load /usr/local/bin/npm: exec format error"

Solution from @marcosnils confirmed by @d3rp3tt3

I ha...

This commit updates the sed command line in the
Github + Google Cloud guide to correct an issue
reported by a user.

Closes #4523

If applied, this commit updates the sample code and explanation with a clarification regarding the build platform for Google Cloud in the Google Cloud + GitHub guide

Signed-off-by: Vikram Vaswani

If applied, this commit updates the quickstart example application repository URL.

Closes #4479

Signed-off-by: Vikram Vaswani

Dagger Cloud run URL

docker-container://dagger-engine

What happened? What did you expect to happen?

I tried some examples from dagger.io.

And for me is unclear in what cases the image is repulled by the dagger-engine.
Manually pulled images seem to be ignored?

The problem is even more critical if you imagine kubernetes pod running the dagger-engine. Because there will be no info after restart of pod. Mounted docker.sock should have wished effect... but If it will repull, dag...

Bumps @docusaurus/core from 2.3.0 to 2.3.1.

Release notes
Sourced from @​docusaurus/core's releases.

2.3.1 (2023-02-03)
:bug: Bug Fix

docusaurus-theme-common

#8628 fix(theme-common): fix issue in tab scroll position restoration on tab click (@​slorber)
#8619 fix(theme-common): localStorage utils dispatch too many storage events leading to infinite loop (@​slorber)
#8618 fix(theme-common): prepare usage of useSyncExter...

Bumps @docusaurus/theme-mermaid from 2.3.0 to 2.3.1.

Release notes
Sourced from @​docusaurus/theme-mermaid's releases.

2.3.1 (2023-02-03)
:bug: Bug Fix

docusaurus-theme-common

#8628 fix(theme-common): fix issue in tab scroll position restoration on tab click (@​slorber)
#8619 fix(theme-common): localStorage utils dispatch too many storage events leading to infinite loop (@​slorber)
#8618 fix(theme-common...