terraform-provider-melange

command module

v0.0.0-...-f67697e Latest Latest Go to latest Published: Oct 1, 2023 License: MPL-2.0 Imports: 5 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/imjasonh/terraform-provider-melange

Links

Open Source Insights

README ¶

Terraform Provider for `melange`

🚨 This is a work in progress. 🚨

https://registry.terraform.io/providers/chainguard-dev/melange

Installing

terraform {
  required_providers {
    melange = { source  = "chainguard-dev/melange" }
  }
}

Then terraform init -upgrade.

(This is not yet published)

Build a single package

provider "melange" {
    archs              = ["x86_64", "aarch64"]
    extra_repositories = ["https://packages.wolfi.dev/os"]
    extra_keyring      = ["https://packages.wolfi.dev/os/wolfi-signing.rsa.pub"]
}

data "melange_config" "config" {
    config_contents = file("package.yaml")
}

resource "melange_build" "package" {
    config          = data.melange_config.config.config
    config_contents = data.melange_config.config.config_contents
}

After applying this config, packages/$ARCH/package-0.0.1-rX.apk will be built, and packages/$ARCH/APKINDEX.tar.gz will be updated.

(This passes locally but currently fails in CI...)

Build a graph of inter-dependent Melange configs

data "melange_graph" "graph" {
    files = fileset(path.module, "*.yaml")
}

resource "melange_build" "packages" {
    for_each = data.melange_graph.graph.configs
    depends_on = data.melange_graph.graph.deps[each.key]

    config          = each.key
    config_contents = data.melange_graph.graph[each.key].config_contents
}

This will crawl a collection of Melange config files, construct a graph of the order they should be built to ensure dependencies are met, and build them in that order with Terraform's configured concurrency.

(This is not yet implemented)

Build a package locally, then build it into an image using `apko_build`

data "melange_config" "config" {
    config_contents = file("package.yaml")
}

resource "melange_build" "package" {
    config          = data.melange_config.config.config
    config_contents = data.melange_config.config.config_contents
}

provider "apko" {
    archs              = ["x86_64", "aarch64"]
    extra_repositories = ["https://packages.wolfi.dev/os", "./packages"]
    extra_keyring      = ["https://packages.wolfi.dev/os/wolfi-signing.rsa.pub", "./local-signing.rsa.pub"]
}

data "apko_config" "config" {
    config_contents = file("image.yaml")
    extra_packages  = [data.melange_config.config.config.package.name]
}

resource "apko_build" "image" {
    config = data.apko_config.config.config
}

(This is not yet tested)

Build and upload a package to GCS

resource "google_storage_bucket_object" "packages" {
    depends_on = [melange_build.packages]
    for_each = fileset("packages/**/*.apk")

    name   = "os/${each.key}"
    bucket = "blah-blah-example-packages"
}

(This is not yet tested)