renovate[bot]
8f73cd5751
chore(deps): update actions/upload-artifact action to v7
...
| datasource | package | from | to |
| ----------- | ----------------------- | ---- | -- |
| github-tags | actions/upload-artifact | v6 | v7 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-03-06 16:51:26 +00:00
renovate[bot]
2f7881318c
chore(deps): update dependency dagger/dagger to v0.20.1 ( #782 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-03-06 12:02:58 +01:00
Marco Nenciarini
ce7b7612ae
fix(security): harden GitHub Actions workflows against expression injection ( #773 )
...
release-please / release-please (push) Failing after 3s
Move `${{ }}` expressions from `run:` blocks into step-level `env:`
blocks, then reference them as properly-quoted shell variables.
Part of cloudnative-pg/cloudnative-pg#10113
Assisted-by: Claude Opus 4.6
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-03-06 10:37:54 +01:00
Marco Nenciarini
378c76a526
fix: resolve WAL archiving performance and memory issues ( #746 )
...
The barman-cloud plugin experienced significant performance degradation
and memory growth compared to the embedded solution. WAL archiving was
noticeably slower and memory consumption grew over time.
Root cause: The sidecar uses a read-only filesystem which prevents
Python from creating bytecode at runtime. When Python finds missing or
stale bytecode (.pyc files), it attempts to recompile on every
invocation, causing high CPU usage and memory consumption. The previous
approach pre-compiled bytecode in a separate base image, but the
bytecode was marked as stale when copied between Docker stages,
triggering runtime recompilation attempts.
This change eliminates bytecode staleness by ensuring all Python
bytecode is properly compiled in the final image before the sidecar
starts. The image is now fully distroless and based on trixie
(previously it was distroless-based but copied unnecessary files from
the build stage), reducing size from 463MB to 270MB and package count
from 188 to 35, while maintaining zero HIGH/CRITICAL vulnerabilities.
Closes #656
Closes #711
Closes #735
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-01-29 16:43:55 +01:00
renovate[bot]
a8b214c460
chore(deps): update dependency dagger/dagger to v0.19.10 ( #730 )
...
release-please / release-please (push) Failing after 3s
Barman Base Image / build (push) Failing after 3s
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-15 17:40:43 +01:00
renovate[bot]
757ca11304
chore(deps): update dependency dagger/dagger to v0.19.9 ( #718 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-10 16:03:47 +01:00
renovate[bot]
7d85d86589
chore(deps): update actions/upload-artifact action to v6 ( #689 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-12-22 16:33:25 +01:00
renovate[bot]
2e38c43f06
chore(deps): update actions/checkout action to v6 ( #688 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-12-22 16:33:07 +01:00
renovate[bot]
987690e85c
chore(deps): update dependency dagger/dagger to v0.19.8 ( #648 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-12-22 16:23:56 +01:00
renovate[bot]
2fa06b7497
chore(deps): update dependency dagger/dagger to v0.19.5 ( #641 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-11-05 23:36:56 +01:00
renovate[bot]
545b8f35bb
chore(deps): update dependency node to v24 ( #638 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-11-05 14:33:23 +01:00
renovate[bot]
1012cc6064
chore(deps): update actions/upload-artifact action to v5 ( #622 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-11-05 14:28:58 +01:00
renovate[bot]
ddb31dd72a
chore(deps): update dependency dagger/dagger to v0.19.4 ( #631 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-11-05 14:28:27 +01:00
renovate[bot]
782fe772f7
chore(deps): update dependency dagger/dagger to v0.19.3 ( #617 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-10-24 11:31:35 +02:00
renovate[bot]
a0e6717026
chore(deps): update actions/setup-node action to v6 ( #592 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-10-15 09:53:28 +02:00
renovate[bot]
d3ab7ce0d4
chore(deps): update dependency dagger/dagger to v0.19.2 ( #582 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-10-08 22:53:49 +02:00
renovate[bot]
57fc77e12b
chore(deps): update dependency dagger/dagger to v0.19.1 ( #572 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-10-08 12:25:26 +02:00
renovate[bot]
562872fb71
chore(deps): update dependency dagger/dagger to v0.19.0 ( #557 )
...
| Package | Update | Change |
|---|---|---|
| [dagger/dagger](https://redirect.github.com/dagger/dagger ) | minor |
`0.18.19` -> `0.19.0` |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-10-03 22:17:49 +02:00
renovate[bot]
549e1ae0a8
chore(deps): update dependency dagger/dagger to v0.18.19 ( #537 )
...
| datasource | package | from | to |
| ----------- | ------------- | -------- | -------- |
| github-tags | dagger/dagger | v0.18.18 | v0.18.19 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-09-18 16:35:41 +02:00
renovate[bot]
0fb57af2bf
chore(deps): update actions/setup-node action to v5 ( #532 )
...
| datasource | package | from | to |
| ----------- | ------------------ | ---- | -- |
| github-tags | actions/setup-node | v4 | v5 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-09-18 12:19:19 +02:00
renovate[bot]
03e547cde5
chore(deps): update actions/upload-pages-artifact action to v4 ( #496 )
...
| datasource | package | from | to |
| ----------- | ----------------------------- | ---- | -- |
| github-tags | actions/upload-pages-artifact | v3 | v4 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-09-18 12:16:13 +02:00
renovate[bot]
3c74d8eb12
chore(deps): update dependency dagger/dagger to v0.18.18 ( #522 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Signed-off-by: Leonardo Cecchi <leonardo.cecchi@enterprisedb.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Leonardo Cecchi <leonardo.cecchi@enterprisedb.com>
2025-09-18 09:56:30 +02:00
renovate[bot]
adb3cbdab3
chore(deps): update dependency dagger/dagger to v0.18.17 ( #320 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Signed-off-by: Leonardo Cecchi <leonardo.cecchi@enterprisedb.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Leonardo Cecchi <leonardo.cecchi@enterprisedb.com>
2025-09-16 09:55:56 +02:00
renovate[bot]
932fc21b85
chore(deps): update dependency node to v22 ( #491 )
...
| datasource | package | from | to |
| --------------- | --------------------- | ------- | ------- |
| github-releases | actions/node-versions | 20.19.4 | 22.18.0 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-08-21 12:48:56 +02:00
renovate[bot]
37086d8843
chore(deps): update actions/checkout action to v5 ( #490 )
...
| datasource | package | from | to |
| ----------- | ---------------- | ---- | -- |
| github-tags | actions/checkout | v4 | v5 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-08-21 12:48:18 +02:00
Jonathan Gonzalez V.
a3ca353f73
chore: add Barman base image ( #59 )
...
We build a new image every week with the necessary base packages
for the sidecar.
This aims to reduce the time required for each CI process to run.
Signed-off-by: Jonathan Gonzalez V. <jonathan.gonzalez@enterprisedb.com>
Signed-off-by: Niccolò Fei <niccolo.fei@enterprisedb.com>
Co-authored-by: Niccolò Fei <niccolo.fei@enterprisedb.com>
2025-08-21 09:55:50 +02:00
Marco Nenciarini
e93eccdf31
ci(release-please): fix workflow permissions ( #382 )
...
Follows #352
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2025-06-03 14:28:50 +02:00
Marco Nenciarini
8fcd748c3b
ci: publish documentation if something changes ( #375 )
...
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2025-05-29 18:45:25 +02:00
Jonathan Gonzalez V.
9640fde14e
ci(security): reduce workflows permissions ( #355 )
...
Set by default the permission to read-all in all the workflows and add
the proper permissions for the following workflows:
* CI
* release-please
* Release Publish Artifacts
closes #352
Signed-off-by: Jonathan Gonzalez V. <jonathan.gonzalez@enterprisedb.com>
2025-05-29 16:08:30 +02:00
Marco Nenciarini
27569ada01
ci(publish): fix emulated arm64 build ( #357 )
...
Use docker/setup-qemu-action to fix intermittent segmentation fault
when building for arm64.
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
Signed-off-by: Marco Nenciarini <mnencia@kcore.it>
2025-05-28 09:56:00 +02:00
Marco Nenciarini
c59043a934
ci(docs): allow workflow_dispatch for docs ( #333 )
...
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2025-05-09 09:23:14 +02:00
Francesco Canovai
fc0d141c14
ci: fix setup-node action ( #326 )
...
Fix the workflow to publish docs. It was trying to install npm
dependencies when the documentation uses yarn.
Closes #324
Signed-off-by: Francesco Canovai <francesco.canovai@enterprisedb.com>
2025-05-08 12:00:09 +02:00
renovate[bot]
d0df4c4678
chore(deps): update actions/configure-pages action to v5 ( #287 )
...
| datasource | package | from | to |
| ----------- | ----------------------- | ---- | -- |
| github-tags | actions/configure-pages | v4 | v5 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-05-05 11:18:26 +02:00
Francesco Canovai
a592793572
docs: publish docs with docusaurus ( #268 )
...
Rework the documentation to be a static website instead of just the
GitHub README.md. Use docusaurus to create the website, and the CI to
publish to GitHub pages on commits to main.
Block `release-please` releases unless the documentation for that version
has been generated.
Closes #244
Signed-off-by: Francesco Canovai <francesco.canovai@enterprisedb.com>
Signed-off-by: Gabriele Bartolini <gabriele.bartolini@enterprisedb.com>
Co-authored-by: Leonardo Cecchi <leonardo.cecchi@enterprisedb.com>
Co-authored-by: Gabriele Bartolini <gabriele.bartolini@enterprisedb.com>
2025-04-30 12:17:57 +02:00
renovate[bot]
af522e08f1
chore(deps): update dependency dagger/dagger to v0.18.5 ( #276 )
...
| datasource | package | from | to |
| ----------- | ------------- | ------- | ------- |
| github-tags | dagger/dagger | v0.18.3 | v0.18.5 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-04-28 16:53:39 +02:00
renovate[bot]
c8e29bd6db
chore(deps): update dependency dagger/dagger to v0.18.3
...
| datasource | package | from | to |
| ----------- | ------------- | ------- | ------- |
| github-tags | dagger/dagger | v0.18.2 | v0.18.3 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-04-15 09:11:13 +01:00
renovate[bot]
bf430040d4
chore(deps): update dependency dagger/dagger to v0.18.2
...
| datasource | package | from | to |
| ----------- | ------------- | ------- | ------- |
| github-tags | dagger/dagger | v0.17.2 | v0.18.2 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-04-08 12:24:18 +01:00
renovate[bot]
0d617fd592
chore(deps): update dependency dagger/dagger to v0.17.2 ( #239 )
...
| datasource | package | from | to |
| ----------- | ------------- | ------- | ------- |
| github-tags | dagger/dagger | v0.16.3 | v0.17.2 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-03-28 05:38:02 +01:00
renovate[bot]
b8f8f97240
chore(deps): update dependency dagger/dagger to v0.16.3 ( #199 )
...
| datasource | package | from | to |
| ----------- | ------------- | ------- | ------- |
| github-tags | dagger/dagger | v0.16.2 | v0.16.3 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-03-17 11:10:26 +01:00
renovate[bot]
0d25af9aa2
chore(deps): update dependency dagger/dagger to v0.16.2 ( #181 )
...
| datasource | package | from | to |
| ----------- | ------------- | ------- | ------- |
| github-tags | dagger/dagger | v0.16.1 | v0.16.2 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-03-04 19:28:38 +01:00
renovate[bot]
a124b4cdcd
chore(deps): update dependency dagger/dagger to v0.16.1 ( #162 )
...
| datasource | package | from | to |
| ----------- | ------------- | ------- | ------- |
| github-tags | dagger/dagger | v0.15.3 | v0.16.1 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-02-24 09:21:54 +01:00
renovate[bot]
87086705e5
chore(deps): update dependency dagger/dagger to v0.15.3 ( #153 )
...
| datasource | package | from | to |
| ----------- | ------------- | ------- | ------- |
| github-tags | dagger/dagger | v0.15.2 | v0.15.3 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-02-03 14:35:33 +01:00
renovate[bot]
f1dedb16ba
chore(deps): update dependency dagger/dagger to v0.15.2 ( #142 )
...
| datasource | package | from | to |
| ----------- | ------------- | ------- | ------- |
| github-tags | dagger/dagger | v0.15.1 | v0.15.2 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-01-27 10:01:56 +01:00
Francesco Canovai
294942bb79
test(e2e): run on ephemeral clusters ( #128 )
...
Rework the e2e test to expect a working connection to a cluster when
they start. Developers can create their own clusters and run the tests.
Removed the code used to start kind clusters within the e2e tests.
Reworked the Taskfile to define two environments where the tests can run:
1. An ephemeral one running within Dagger, using the k3s module, to be
used by the CI.
2. A persistent one created with Kind, requiring the kind binary, to be
used for development and debugging when the ephemeral cluster is not
enough.
Signed-off-by: Francesco Canovai <francesco.canovai@enterprisedb.com>
Signed-off-by: Leonardo Cecchi <leonardo.cecchi@enterprisedb.com>
Co-authored-by: Leonardo Cecchi <leonardo.cecchi@enterprisedb.com>
2025-01-07 14:24:12 +01:00
Francesco Canovai
cd03c556ef
feat: release-please cleanup ( #115 )
...
Stop forcing the initial version to 0.1.0, to allow for release-please
version updates. Also, automate the update of the README on release.
Closes #114
Signed-off-by: Francesco Canovai <francesco.canovai@enterprisedb.com>
2024-12-17 14:36:54 +01:00
renovate[bot]
91d06ac91f
chore(deps): update dependency dagger/dagger to v0.15.1 ( #101 )
...
| datasource | package | from | to |
| ----------- | ------------- | ------- | ------- |
| github-tags | dagger/dagger | v0.14.0 | v0.15.1 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-12-16 13:26:33 +01:00
Francesco Canovai
e13a60f15c
ci: improve release-please ( #105 )
...
Add sentence-case plugin and move a few parameters from the command
line to the configuration.
Signed-off-by: Francesco Canovai <francesco.canovai@enterprisedb.com>
2024-12-12 16:38:16 +01:00
renovate[bot]
576ff6e058
chore(deps): update dependency dagger/dagger to v0.14.0 ( #46 )
...
| datasource | package | from | to |
| ----------- | ------------- | ------- | ------- |
| github-tags | dagger/dagger | v0.13.6 | v0.14.0 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-11-19 10:44:37 +01:00
Francesco Canovai
74bc9e221e
test(e2e): environment setup ( #43 )
...
Create the CI and testing infrastructure for e2e testing. Running the ci
task now will push the plugin and sidecar images to a local registry,
start kind, install the CloudNativePG and cert-manager operators, and
then install the plugin-barman-cloud one.
No actual test is implemented.
Signed-off-by: Francesco Canovai <francesco.canovai@enterprisedb.com>
2024-11-14 09:44:18 +01:00
renovate[bot]
8c8a8c36d5
chore(deps): update dependency dagger/dagger to v0.13.6 ( #30 )
...
| datasource | package | from | to |
| ----------- | ------------- | ------- | ------- |
| github-tags | dagger/dagger | v0.13.3 | v0.13.6 |
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2024-10-28 14:19:55 +01:00
