Update registry.access.redhat.com/ubi9/go-toolset Docker tag to v1.26.4-1782736563 (main) by red-hat-konflux[bot] · Pull Request #3368 · conforma/cli

red-hat-konflux · 2026-06-27T02:00:49Z

This PR contains the following updates:

Package	Type	Update	Change
registry.access.redhat.com/ubi9/go-toolset	stage	patch	`1.26.3` → `1.26.4-1782736563`

Warning

Some dependencies could not be looked up. Check the warning logs for more information.

Configuration

📅 Schedule: (UTC)

Branch creation
- Between 12:00 AM and 03:59 AM (* 0-3 * * *)
Automerge
- At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

To execute skipped test pipelines write comment /ok-to-test.

Documentation

Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.

fullsend-ai-review · 2026-06-27T02:06:35Z

🤖 Review · ⚠️ Cancelled · Started 2:06 AM UTC · Ended 2:09 AM UTC
Commit: 47d3320 · View workflow run →

fullsend-ai-review · 2026-06-27T02:12:27Z

🤖 Finished Review · ✅ Success · Started 2:12 AM UTC · Completed 2:18 AM UTC
Commit: 47d3320 · View workflow run →

fullsend-ai-review · 2026-06-27T02:17:58Z

Review

Findings

High

[protected-path] Dockerfile.dist:19 — This PR modifies Dockerfile.dist, which falls under the Dockerfile protected path. The PR has no linked issue providing authorization for modifying governance/infrastructure files. Human approval is required for all protected-path changes.
Remediation: Link an issue that authorizes this Dockerfile change, or obtain explicit human maintainer approval.

Previous run

Review

Findings

High

[protected-path] Dockerfile.dist:19 — This file matches the Dockerfile protected path. The PR modifies a governance/infrastructure file (Dockerfile.dist) but has no linked issue providing authorization or justification for the change. While this is an automated dependency version bump from MintMaker/Renovate, protected-path changes always require human approval regardless of the change's nature.
Remediation: A maintainer should review and approve this protected-path change. No code changes are needed — this finding is a governance gate, not a code quality issue.

Previous run (2)

Review

Findings

High

[protected-path] Dockerfile.dist — This file falls under the Dockerfile protected path. The PR has no linked issue providing authorization for changes to governance/infrastructure files. While the change itself is a trivial Docker tag update (1.26.3 → 1.26.3-1782377916) with an unchanged image digest, human approval is always required for protected-path modifications.
Remediation: Obtain explicit human maintainer approval for this Dockerfile change.

Labels: PR modifies a Dockerfile (build infrastructure) and is a dependency version bump

fullsend-ai-review

See the review comment for full details.

fullsend-ai-review · 2026-06-27T02:17:59Z

 ## Build

-FROM registry.access.redhat.com/ubi9/go-toolset:1.26.3@sha256:17c888d75753f128f6cbdc5587932c3abd2632ca8e0931aa27b9a60c7a75ac62 AS build
+FROM registry.access.redhat.com/ubi9/go-toolset:1.26.3-1782377916@sha256:17c888d75753f128f6cbdc5587932c3abd2632ca8e0931aa27b9a60c7a75ac62 AS build


[high] protected-path

Dockerfile.dist is under the protected path 'Dockerfile'. This PR has no linked issue providing authorization for changes to governance/infrastructure files. While the change itself is a trivial tag update with an unchanged digest (sha256:17c888d75753f128f6cbdc5587932c3abd2632ca8e0931aa27b9a60c7a75ac62), human approval is always required for protected-path modifications.

Suggested fix: Obtain explicit human maintainer approval for this Dockerfile change.

fullsend-ai-review · 2026-06-30T02:00:19Z

🤖 Finished Review · ✅ Success · Started 2:00 AM UTC · Completed 2:06 AM UTC
Commit: 47d3320 · View workflow run →

fullsend-ai-review

See the review comment for full details.

fullsend-ai-review · 2026-06-30T02:06:03Z

 ## Build

-FROM registry.access.redhat.com/ubi9/go-toolset:1.26.3@sha256:17c888d75753f128f6cbdc5587932c3abd2632ca8e0931aa27b9a60c7a75ac62 AS build
+FROM registry.access.redhat.com/ubi9/go-toolset:1.26.4-1782736563@sha256:83cfd595f20e494cea9dc6526f217441e60bb9c5da85b33157c761e5f6a3d852 AS build


[high] protected-path

This file matches the Dockerfile protected path. The PR modifies a governance/infrastructure file (Dockerfile.dist) but has no linked issue providing authorization or justification for the change. While this is an automated dependency version bump from MintMaker/Renovate, protected-path changes always require human approval regardless of the change nature.

Suggested fix: A maintainer should review and approve this protected-path change. No code changes are needed — this finding is a governance gate, not a code quality issue.

….4-1782736563 Signed-off-by: red-hat-konflux <126015336+red-hat-konflux[bot]@users.noreply.github.com>

fullsend-ai-review · 2026-06-30T02:12:10Z

🤖 Finished Review · ✅ Success · Started 2:12 AM UTC · Completed 2:17 AM UTC
Commit: 47d3320 · View workflow run →

fullsend-ai-review

See the review comment for full details.

fullsend-ai-review · 2026-06-30T02:17:44Z

 ## Build

-FROM registry.access.redhat.com/ubi9/go-toolset:1.26.3@sha256:17c888d75753f128f6cbdc5587932c3abd2632ca8e0931aa27b9a60c7a75ac62 AS build
+FROM registry.access.redhat.com/ubi9/go-toolset:1.26.4-1782736563@sha256:83cfd595f20e494cea9dc6526f217441e60bb9c5da85b33157c761e5f6a3d852 AS build


[high] protected-path

This PR modifies Dockerfile.dist, which falls under the Dockerfile protected path. The PR has no linked issue providing authorization for modifying governance/infrastructure files. Human approval is required for all protected-path changes.

Suggested fix: Link an issue that authorizes this Dockerfile change, or obtain explicit human maintainer approval.

red-hat-konflux Bot added main renovate labels Jun 27, 2026

red-hat-konflux Bot enabled auto-merge June 27, 2026 02:00

github-actions Bot added the size: XS label Jun 27, 2026

red-hat-konflux Bot force-pushed the konflux/mintmaker/main-main/registry.access.redhat.com-ubi9-go-toolset-1.26.x branch from a1fc84c to 76c8528 Compare June 27, 2026 02:03

red-hat-konflux Bot force-pushed the konflux/mintmaker/main-main/registry.access.redhat.com-ubi9-go-toolset-1.26.x branch from 76c8528 to 0148438 Compare June 27, 2026 02:08

fullsend-ai-review Bot suggested changes Jun 27, 2026

View reviewed changes

fullsend-ai-review Bot added docker Pull requests that update Docker code dependencies Pull requests that update a dependency file labels Jun 27, 2026

red-hat-konflux Bot force-pushed the konflux/mintmaker/main-main/registry.access.redhat.com-ubi9-go-toolset-1.26.x branch from 0148438 to 0a0bd15 Compare June 30, 2026 01:57

red-hat-konflux Bot changed the title ~~Update registry.access.redhat.com/ubi9/go-toolset Docker tag to v1.26.3-1782377916 (main)~~ Update registry.access.redhat.com/ubi9/go-toolset Docker tag to v1.26.4-1782736563 (main) Jun 30, 2026

fullsend-ai-review Bot suggested changes Jun 30, 2026

View reviewed changes

Update registry.access.redhat.com/ubi9/go-toolset Docker tag to v1.26…

a3fb045

….4-1782736563 Signed-off-by: red-hat-konflux <126015336+red-hat-konflux[bot]@users.noreply.github.com>

red-hat-konflux Bot force-pushed the konflux/mintmaker/main-main/registry.access.redhat.com-ubi9-go-toolset-1.26.x branch from 0a0bd15 to a3fb045 Compare June 30, 2026 02:08

fullsend-ai-review Bot suggested changes Jun 30, 2026

View reviewed changes

Uh oh!

Conversation

red-hat-konflux Bot commented Jun 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Configuration

Documentation

Uh oh!

fullsend-ai-review Bot commented Jun 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

fullsend-ai-review Bot commented Jun 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

fullsend-ai-review Bot commented Jun 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Review

Findings

High

Review

Findings

High

Review

Findings

High

Uh oh!

fullsend-ai-review Bot left a comment

Choose a reason for hiding this comment

Uh oh!

fullsend-ai-review Bot Jun 27, 2026

Choose a reason for hiding this comment

Uh oh!

fullsend-ai-review Bot commented Jun 30, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

fullsend-ai-review Bot left a comment

Choose a reason for hiding this comment

Uh oh!

fullsend-ai-review Bot Jun 30, 2026

Choose a reason for hiding this comment

Uh oh!

fullsend-ai-review Bot commented Jun 30, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

fullsend-ai-review Bot left a comment

Choose a reason for hiding this comment

Uh oh!

fullsend-ai-review Bot Jun 30, 2026

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

red-hat-konflux Bot commented Jun 27, 2026 •

edited

Loading

fullsend-ai-review Bot commented Jun 27, 2026 •

edited

Loading

fullsend-ai-review Bot commented Jun 27, 2026 •

edited

Loading

fullsend-ai-review Bot commented Jun 27, 2026 •

edited

Loading

fullsend-ai-review Bot commented Jun 30, 2026 •

edited

Loading

fullsend-ai-review Bot commented Jun 30, 2026 •

edited

Loading