feat(build.py): clean images only if specified through cli option

feat(build.py): get package version from repo if couldn't from task
fix(build.py): use identity check instead of equality for None
2025-07-21 21:18:49 +03:00 · 2025-07-17 14:01:43 +03:00 · 2025-07-17 13:58:42 +03:00 · 2025-07-17 13:18:49 +03:00 · 2025-07-09 17:01:11 +03:00 · 2025-07-09 17:00:30 +03:00
134 changed files with 1440 additions and 239 deletions
--- a/.gitea/workflows/k8s_buildscript.py
+++ b/.gitea/workflows/k8s_buildscript.py
@ -0,0 +1,74 @@
+#!/usr/bin/env python3
+
+import argparse
+import json
+import subprocess
+
+vers_path = ".gitea/workflows/k8s_vers.json"
+
+def run(args):
+    result = subprocess.run(
+        args,
+        capture_output = True,
+        text = True
+    )
+    if result.stderr is not None:
+        print(result.stderr)
+        return False
+    print(result.stdout)
+    return True
+
+def parse_args() -> argparse.Namespace:
+    parser = argparse.ArgumentParser(
+        formatter_class=argparse.ArgumentDefaultsHelpFormatter,
+    )
+    parser.add_argument(
+        "--branch",
+        help="used to pick the appropriate VM template to clone",
+        choices=["sisyphus", "c10f2", "p10", "p11"],
+        )
+    parser.add_argument(
+        "--other-build-args",
+        help="other build arg as a string",
+        )
+    parser.add_argument(
+        "--workspace",
+        help="workspace, path to builing script",
+        )
+    return parser.parse_args()
+
+def main() -> None:
+    args = parse_args()
+    if args.branch is None or args.branch == "":
+        raise RuntimeError("Empty branch setting. Check your choise --branch.")
+
+    data = {}
+    with open(f"{args.workspace}/{vers_path}", "r") as f:
+        data = json.load(f)
+
+    i = 0
+    for br in data.get("branches"):
+        if br.get("name") == args.branch:
+            break
+        i += 1
+
+    vers_branch = data.get("branches")[i].get("versions")
+    if vers_branch == None :
+        raise RuntimeError(f"Unknown branch: {args.branch!r}. In {vers_path} no k8s-versions list.")
+
+    images_to_rebuild="k8s/kube-apiserver k8s/kube-scheduler k8s/kube-controller-manager k8s/kube-proxy k8s/kubelet k8s/coredns k8s/etcd"
+    for ver in vers_branch:
+        kube_ver = ver.get("kube-version")
+        dns_ver = ver.get("coredns")
+        if kube_ver != None and dns_ver != None:
+            packs_string=f"-b {args.branch} " + "--package-versions '{\"k8s/kube-apiserver\":" + f"\"{kube_ver}\",\"k8s/kube-scheduler\":\"{kube_ver}\",\"k8s/kube-controller-manager\":\"{kube_ver}\",\"k8s/kube-proxy\":\"{kube_ver}\",\"k8s/kubelet\":\"{kube_ver}\",\"k8s/coredns\":\"{dns_ver}\",\"k8s/etcd\":\"{kube_ver}\"" + "}'"
+            if ver.get("latest") != None and ver.get("latest"):
+                packs_string=f"-o k8s --latest {args.branch} "+packs_string
+            else:
+                packs_string=f"-i {images_to_rebuild} "+packs_string
+
+            subprocess.run(f"{args.workspace}/build.py {args.other_build_args} {packs_string}", shell=True)
+            subprocess.run("podman rmi -f --all", shell=True)
+
+if __name__ == "__main__":
+    main()
--- a/.gitea/workflows/k8s_vers.json
+++ b/.gitea/workflows/k8s_vers.json
@ -0,0 +1,72 @@
+{
+  "branches": [
+    {
+      "name": "p10",
+      "versions": [
+        {
+          "kube-version": "1.27",
+          "coredns": "1.10.1"
+        },
+        {
+          "kube-version": "1.28",
+          "coredns": "1.10.1",
+          "latest": true
+        }
+      ]
+    },
+    {
+      "name": "p11",
+      "versions": [
+        {
+          "kube-version": "1.31",
+          "coredns": "1.11.3"
+	},
+        {
+          "kube-version": "1.32",
+          "coredns": "1.11.3"
+	},
+	{
+	  "kube-version": "1.33",
+          "coredns": "1.33",
+          "latest": true
+	}
+      ]
+    },
+    {
+    	"name": "c10f2",
+	"versions": [
+	{
+          "kube-version": "1.31",
+          "coredns": "1.11.3"        
+	},
+	{
+          "kube-version": "1.32",
+          "coredns": "1.11.3"
+	},
+	{
+          "kube-version": "1.33",
+          "coredns": "1.33",
+          "latest": true
+        }
+      ]
+    },
+    {
+      "name": "sisyphus",
+      "versions": [
+	{
+          "kube-version": "1.31",
+          "coredns": "1.11.3"
+        },
+        {
+          "kube-version": "1.32",
+          "coredns": "1.11.3"
+	},
+	{
+          "kube-version": "1.33",
+          "coredns": "1.33",
+          "latest": true
+        }
+      ]
+    }
+  ]
+}
--- a/.gitea/workflows/testscript
+++ b/.gitea/workflows/testscript
@ -32,20 +32,20 @@ do
  if [ -n "$test" ]; then
    command="podman run --rm --entrypoint=\"$entrypoint\" $url/$imgpath -c \"$test\""
  else
-    if [[ "$IM" == distroless-toybox ]]; then
-      command="podman run --rm $url/$imgpath toysh -c true"
+    if [ "$IM" = distroless-toybox ]; then
+      command="podman run -q --rm $url/$imgpath toysh -c true"
    fi
    if [ "$IM" = distroless-true ]; then
-      command="podman run --rm $url/$imgpath \"true\""
+      command="podman run -q --rm $url/$imgpath \"true\""
    fi
    if [ "$IM" = distroless-gotop ]; then 
-      command="podman run --rm $url/$imgpath \"--version\""
+      command="podman run -q --rm $url/$imgpath \"--version\""
    fi 
    if [ "$IM" = flannel-cni-plugin ]; then
-      command="podman run --rm $url/$imgpath \"/flannel\""
+      command="podman run -q --rm $url/$imgpath \"/flannel\""
    fi
    if [ "$IM" == pause ]; then 
-      command="podman run --rm $url/$imgpath \"/pause\" \"-v\""
+      command="podman run -q --rm $url/$imgpath \"/pause\" \"-v\""
    fi 
  fi
  echo $command
@ -58,7 +58,7 @@ do
  then 
    if [[ -n $(cat $IM.log) ]]
    then errors="TEST ERROR OF IMAGE $IM: $(cat $IM.log); $errors"
-    else errors="TEST ERROR OF IMAGE $IM: test returned empty error, but exit status was nozero; $errors"
+    #else errors="TEST ERROR OF IMAGE $IM: test returned empty error, but exit status was nozero; $errors"
    fi 
  fi 
  haserr=false
--- a/.gitea/workflows/wf_full.yaml
+++ b/.gitea/workflows/wf_full.yaml
@ -3,6 +3,7 @@ on:
  push:
    tags:
      - '*_*'
+      - '!*_k8s'

 jobs:
  build-process:
@ -14,6 +15,14 @@ jobs:
      repo: ${{ env.REPO }}
      buildres: ${{ steps.build-script.outcome }}
    steps:
+      - name: Update apt
+        uses: actions/init-alt-env@v1
+      - name: Install requires
+        run: |
+          echo "apt-get install -y python3-module-tomli python3-module-jinja2 python3-module-yaml python3-module-requests podman buildah jq curl"
+          apt-get install -y python3-module-tomli python3-module-jinja2 python3-module-yaml python3-module-requests podman buildah jq curl
+          echo "apt-get install -y qemu-user-static-binfmt-aarch64 qemu-user-static-binfmt-arm qemu-user-static-binfmt-riscv qemu-user-static-binfmt-loongarch"
+          apt-get install -y qemu-user-static-binfmt-aarch64 qemu-user-static-binfmt-arm qemu-user-static-binfmt-riscv qemu-user-static-binfmt-loongarch
      - name: Check workspace
        run: |
          repourl=$(echo $GU | cut -d '/' -f 3)
@ -25,23 +34,6 @@ jobs:
        env:
          GU: ${{ gitea.server_url }}
          GR: ${{ gitea.repository }}
-      - name: Set repo for c10f2 (Temporary)
-        if: ${{ contains(github.ref_name, 'c10f2') }}
-        run: |
-          echo "event tag=${{ github.ref_name }}" 
-          echo "10.4.0.3        update.altsp.su" >> /etc/hosts
-          echo "cat /etc/hosts"
-          cat /etc/hosts
-      - name: Update apt
-        uses: actions/init-alt-env@v1
-      - name: Install requires
-        run: |
-          echo "apt-get install -y python3-module-tomli python3-module-jinja2 python3-module-yaml python3-module-requests podman buildah jq curl"
-          apt-get install -y python3-module-tomli python3-module-jinja2 python3-module-yaml python3-module-requests podman buildah jq curl
-          echo "apt-get install -y qemu-user-static-binfmt-aarch64 qemu-user-static-binfmt-arm qemu-user-static-binfmt-ppc qemu-user-static-binfmt-riscv qemu-user-static-binfmt-loongarch"
-          apt-get install -y qemu-user-static-binfmt-aarch64 qemu-user-static-binfmt-arm qemu-user-static-binfmt-ppc qemu-user-static-binfmt-riscv qemu-user-static-binfmt-loongarch
-      - name: Check out current repo
-        uses: actions/checkout@v4
      - name: Parse target branch and tag from events context, save to env
        env:
          EV: ${{ toJson(gitea.event) }}
@ -51,6 +43,26 @@ jobs:
          org=$(echo $EV | jq '.ref' -r | sed 's/refs\/tags\///g' | cut -d '_' -f 2)
          echo "ORG=$org" >> ${GITHUB_ENV}
          echo "ORG=$org"
+      - name: Check out current repo
+        uses: actions/checkout@v4
+      - name: Change vendor label for c10f
+        if: ${{ contains(github.ref_name, 'c10f') }}
+        run: |
+          echo "sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/Dockerfile.template ||:"
+          sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/Dockerfile.template ||:
+          echo "sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/distroless.toml ||:"
+          sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/distroless.toml ||:
+          echo "sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/info.yaml ||:"
+          sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/info.yaml ||:
+        env:
+          ORG: ${{ env.ORG }}
+      - name: Set repo for c10f2 (Temporary)
+        if: ${{ contains(github.ref_name, 'c10f2') }}
+        run: |
+          echo "event tag=${{ github.ref_name }}" 
+          echo "10.4.0.3        update.altsp.su" >> /etc/hosts
+          echo "cat /etc/hosts"
+          cat /etc/hosts
      - name: Login podman gitea
        run: |
          echo "podman login ${{ env.URL }}"
@ -61,14 +73,16 @@ jobs:
      - name: Run building script
        id: build-script
        run: |
-          build_args="-b $BR -o $ORG --skip-images alt/distroless-devel"
-          if [[ "$BR" == "sisyphus" ]]; then arches="--arches amd64 386 arm64 loong64"; else arches="--arches amd64 386 arm64"; fi
-          if [[ "$ORG" == "k8s" ]]; then build_args="$build_args --overwrite-organization $ORG-$BR --package-versions {\"k8s/kube-apiserver\":\"1.31\",\"k8s/kube-scheduler\":\"1.31\",\"k8s/kube-controller-manager\":\"1.31\",\"k8s/kube-proxy\":\"1.31\",\"k8s/coredns\":\"1.11.3\",\"k8s/kubelet\":\"1.31\"}"; fi
-          echo "build.py $build_args $arches"
+          #build base with riskv64 for sisyphus if it is
+          if [[ "$BR" == "sisyphus" && "$ORG" == "base" ]]; then echo "${{ gitea.workspace }}/build.py --log-level debug -i base/base -b $BR --latest $BR --registry $BUILD_URL"; ${{ gitea.workspace }}/build.py -i base/base -b "$BR" --latest "$BR" --registry "$BUILD_URL"; fi
+          build_args="-b $BR --log-level debug --latest $BR -o $ORG --registry $BUILD_URL"
+          if [[ "$BR" == "sisyphus" ]]; then arches="--arches amd64 386 arm64 loong64 --skip-images base/base"; else arches="--arches amd64 386 arm64"; fi 
+          echo "${{ gitea.workspace }}/build.py $build_args $arches"
          ${{ gitea.workspace }}/build.py $build_args $arches
        env:
          ORG: ${{ env.ORG }}
          BR: ${{ env.BRANCH }}
+          BUILD_URL: "gitea.basealt.ru/alt"
        continue-on-error: true
      - name: Send notification if build crashed
        if: ${{ steps.build-script.outcome != 'success' }}
--- a/.gitea/workflows/wf_k8s.yaml
+++ b/.gitea/workflows/wf_k8s.yaml
@ -0,0 +1,106 @@
+name: Full building alt images
+on:
+  push:
+    tags:
+      - "*_k8s"
+
+jobs:
+  build-process:
+    runs-on: alt-sisyphus
+    outputs:
+      branch: ${{ env.BRANCH }}
+      org: ${{ env.ORG }}
+      url: ${{ env.URL }}
+      repo: ${{ env.REPO }}
+      buildres: ${{ steps.build-script.outcome }}
+    steps:
+      - name: Check workspace
+        run: |
+          repourl=$(echo $GU | cut -d '/' -f 3)
+          echo "URL=$repourl" >> ${GITHUB_ENV}
+          echo $repourl
+          reponame=$(echo $GR | cut -d '/' -f 1)
+          echo "REPO=$reponame" >> ${GITHUB_ENV}
+          echo $reponame
+        env:
+          GU: ${{ gitea.server_url }}
+          GR: ${{ gitea.repository }}
+      - name: Set repo for c10f2 (Temporary)
+        if: ${{ contains(github.ref_name, 'c10f2') }}
+        run: |
+          echo "event tag=${{ github.ref_name }}"
+          echo "10.4.0.3        update.altsp.su" >> /etc/hosts
+          echo "cat /etc/hosts"
+          cat /etc/hosts
+      - name: Update apt
+        uses: actions/init-alt-env@v1
+      - name: Install requires
+        run: |
+          echo "apt-get install -y python3-module-tomli python3-module-jinja2 python3-module-yaml python3-module-requests podman buildah jq curl"
+          apt-get install -y python3-module-tomli python3-module-jinja2 python3-module-yaml python3-module-requests podman buildah jq curl
+          echo "apt-get install -y qemu-user-static-binfmt-aarch64 qemu-user-static-binfmt-arm qemu-user-static-binfmt-riscv qemu-user-static-binfmt-loongarch"
+          apt-get install -y qemu-user-static-binfmt-aarch64 qemu-user-static-binfmt-arm qemu-user-static-binfmt-riscv qemu-user-static-binfmt-loongarch
+      - name: Parse target branch and tag from events context, save to env
+        env:
+          EV: ${{ toJson(gitea.event) }}
+        run: |
+          echo $EV | jq '.ref' -r | sed "s/refs\/tags\//BRANCH=/g" | cut -d '_' -f 1
+          echo $EV | jq '.ref' -r | sed "s/refs\/tags\//BRANCH=/g" | cut -d '_' -f 1 >> ${GITHUB_ENV}
+          org=$(echo $EV | jq '.ref' -r | sed 's/refs\/tags\///g' | cut -d '_' -f 2)
+          echo "ORG=$org" >> ${GITHUB_ENV}
+          echo "ORG=$org"
+      - name: Check out current repo
+        uses: actions/checkout@v4
+      - name: Change vendor label for c10f
+        if: ${{ contains(github.ref_name, 'c10f') }}
+        run: |
+          echo "sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/Dockerfile.template ||:"
+          sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/Dockerfile.template ||:
+          echo "sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/distroless.toml ||:"
+          sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/distroless.toml ||:
+          echo "sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/info.yaml ||:"
+          sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/info.yaml ||:
+        env:
+          ORG: ${{ env.ORG }}
+      - name: Login podman gitea
+        run: |
+          echo "podman login ${{ env.URL }}"
+          podman login --username $P_USER --password $P_PASS ${{ env.URL }}
+        env:
+          P_USER: ${{ secrets.PODMAN_USER }}
+          P_PASS: ${{ secrets.PODMAN_PASS }}
+      - name: Run building script
+        id: build-script
+        run: |
+          if [[ "$BR" == "sisyphus" ]]; then arches="--arches amd64 386 arm64 loong64"; else arches="--arches amd64 386 arm64"; fi
+          build_args="--registry $BUILD_URL $arches"
+          #run build script
+          ${{ gitea.workspace }}/.gitea/workflows/k8s_buildscript.py --branch "$BR" --other-build-args "$build_args" --workspace "${{ gitea.workspace }}"
+        env:
+          ORG: ${{ env.ORG }}
+          BR: ${{ env.BRANCH }}
+          BUILD_URL: "gitea.basealt.ru/alt"
+        continue-on-error: true
+      - name: Send notification if build crashed
+        if: ${{ steps.build-script.outcome != 'success' }}
+        run: |
+          issueid=1
+          body="Building images finish with some errors."
+          curl -X 'POST' "$URL/api/v1/repos/$REPO/image-forge/issues/$issueid/comments?token=$T" -H 'accept: application/json' -H 'Content-Type: application/json' -d "{ \"body\": \"$body\" }" -s
+          echo "notification about test error is sent to issue $issueid"
+        env:
+          T: ${{ secrets.TOKEN }}
+          BR: ${{ env.BRANCH }}
+          URL: ${{ gitea.server_url }}
+          REPO: ${{ env.REPO }}
+      - name: Delete event tag
+        run: |
+          tagname=$(echo $EV | jq '.ref' -r | sed "s/refs\/tags\///g")
+          curl -X 'DELETE' "$URL/api/v1/repos/$REPO/image-forge/tags/$tagname?token=$T" -H 'accept: application/json' -s
+          echo "tag $tagname is deleted"
+        env:
+          T: ${{ secrets.TOKEN }}
+          BR: ${{ env.BRANCH }}
+          URL: ${{ gitea.server_url }}
+          REPO: ${{ env.REPO }}
+          EV: ${{ toJson(gitea.event) }}
--- a/.gitea/workflows/wf_single.yaml
+++ b/.gitea/workflows/wf_single.yaml
@ -68,6 +68,17 @@ jobs:
          ver=$(echo $EV | jq '.ref' -r | sed 's/refs\/tags\///g' | cut -d '_' -f 3)
          echo "VER=$ver" >> ${GITHUB_ENV}
          echo "VER=$ver"
+      - name: Change vendor label for c10f
+        if: ${{ contains(github.ref_name, 'c10f') }}
+        run: |
+          echo "sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/Dockerfile.template ||:"
+          sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/Dockerfile.template ||:
+          echo "sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/distroless.toml ||:"
+          sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/distroless.toml ||:
+          echo "sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/info.yaml ||:"
+          sed -i 's/ALT Linux Team/BaseALT LLC/g' ${{ gitea.workspace }}/org/$ORG/*/info.yaml ||:
+        env:                                                                                                               
+          ORG: ${{ env.ORG }}
      - name: Get test for image
        run: |
          if test -f ${{ gitea.workspace }}/org/$IM/test; then testscript=$(cat ${{ gitea.workspace }}/org/$IM/test); else testscript=""; fi
@ -78,10 +89,10 @@ jobs:
      - name: Run building script
        id: build-script
        run: |
-          if [[ "$IM" == *"k8s"* ]]; then k8sarg="--overwrite-organization $ORG-$BR --package-versions {\"$IM\":\"$VER\"}"; else k8sarg=""; fi
+          if [[ "$IM" == *"k8s"* ]]; then k8sarg="--package-versions {\"$IM\":\"$VER\"}"; else k8sarg=""; fi
          if [[ "$BR" == "sisyphus" ]]; then arches="--arches amd64 386 arm64 loong64"; else arches="--arches amd64 386 arm64"; fi
          echo "build.py -i $IM -b $BR $arches $k8sarg"
-          ${{ gitea.workspace }}/build.py -i $IM -b $BR $arches $k8sarg 
+          ${{ gitea.workspace }}/build.py -i $IM -b $BR $arches --latest $BR --log-level debug --registry gitea.basealt.ru/alt $k8sarg 
        env:
          IM: ${{ env.IMAGE }}
          VER: ${{ env.VER }}
@ -128,7 +139,8 @@ jobs:
        if: ${{ needs.build-process.outputs.test != '' }}
        continue-on-error: true
        run: |
-          if [[ "$IM" == *"k8s"* ]]; then echo "skip tests for k8s images"; else podman run --rm --entrypoint="/bin/sh" $URL/$IM:$BR -c "$TEST"; fi
+          imname=$(echo "$IM" | cut -d "/" -f2)
+          if [[ "$IM" == *"k8s"* ]]; then echo "skip tests for k8s images"; else podman run --rm --entrypoint="/bin/sh" $URL/$REPO/$BR/$imname:latest -c "$TEST"; fi
        env:
          IM: ${{ needs.build-process.outputs.image }} 
          BR: ${{ needs.build-process.outputs.branch }}
@ -140,8 +152,9 @@ jobs:
        if: ${{ needs.build-process.outputs.test == '' }}
        continue-on-error: true
        run: |
-          if [[ $IM = 'alt/distroless-true' ]]; then podman run --rm $URL/$IM:$BR true; fi
-          if [[ $IM = 'alt/distroless-gotop' ]]; then podman run --rm $URL/$IM:$BR --version; fi
+          imname=$(echo "$IM" | cut -d "/" -f2)
+          if [[ $IM = 'alt/distroless-true' ]]; then podman run --rm $URL/$REPO/$BR/$imname:latest true; fi
+          if [[ $IM = 'alt/distroless-gotop' ]]; then podman run --rm $URL/$REPO/$BR/$imname:latest --version; fi
        env:
          IM: ${{ needs.build-process.outputs.image }}
          BR: ${{ needs.build-process.outputs.branch }}
--- a/README.md
+++ b/README.md
@ -38,10 +38,12 @@ If you push to the users repository, then organiztion is your username.
  If contains jinja2 template syntax, `--package-version`
  CLI option must be specified.

- `version_template`: **string** (OPTIONAL)
+- `version_template`: **string** or **list of strings** (OPTIONAL)

-  template to apply when construction the tag,
-  `version` string variable is available in the template
+  Template to apply when construction the tag,
+  `version` string variable is available in the template.
+  If `version_template` is a list of strings, then the image wiil be tagged
+  with every string in the list.

 ### examples

@ -84,6 +86,22 @@ source_packages:
 ./build.py -i k8s/pause
 ```

+#### org/k8s/etcd
+
+```yaml
+is_versioned: true
+version_template:
+  - "v{{ version }}"
+  - "{{ version }}"
+  - "{{ version }}-0"
+source_packages:
+  - etcd-for-kubernetes{{ version }}
+```
+
+```bash
+./build.py -b sisyphus -i k8s/etcd --package-version '{"k8s/etcd": "1.32"}'
+```
+
 ## Dependencies
 On x86_64 machine using p10 branch you need:
 - `python3-module-tomli`
--- a/build.py
+++ b/build.py
@ -3,6 +3,7 @@
 import argparse
 import functools
 import json
+import logging
 import re
 import subprocess
 import textwrap
@ -10,23 +11,33 @@ from datetime import datetime
 from dataclasses import dataclass
 from graphlib import TopologicalSorter
 from pathlib import Path
+from typing import Optional, Union

 import requests
 import tomli
 import yaml
-from jinja2 import Template
+from jinja2 import Environment, BaseLoader
+
+logger = logging.getLogger(__name__)

 ORG_DIR = Path("org")

-PKG_VERSIONS: dict | None = None
+PKG_VERSIONS: Optional[dict] = None

+# Jinja2 custom fail filter
+def fail(message: str):
+    raise ValueError(message)
+
+JINJA_ENV = Environment(loader=BaseLoader())
+JINJA_ENV.filters['fail'] = fail

@dataclass
 class Image:
    canonical_name: str
-    is_versioned: bool | None
-    verion_template: str | None
-    source_packages: list[str] | None
+    is_versioned: Optional[bool]
+    version_template: Union[list[str], str, None]
+    source_packages: Optional[list[str]]
+    annotations: Optional[dict[str, str]]

    def __init__(self, canonical_name: str):
        self.canonical_name = canonical_name
@ -37,6 +48,7 @@ class Image:
        if not info_file.exists():
            self.is_versioned = None
            self.source_packages = None
+            self.annotations = None
            return

        info: dict = yaml.safe_load(info_file.read_text())
@ -63,6 +75,10 @@ class Image:
        if "version_template" in info:
            self.version_template = info["version_template"]

+        self.annotations = None
+        if "annotations" in info:
+            self.annotations = info["annotations"]
+

 class Tasks:
    def __init__(self, tasks):
@ -85,19 +101,19 @@ class Tasks:
                    if image.canonical_name in i or len(i) == 0
                ]

+class AltAPIError(Exception):
+    pass

 def api_get_source_package_version(branch: str, package_name: str) -> str:
    api_url = "https://rdb.altlinux.org/api/site/package_versions_from_tasks"
    params = {"branch": branch, "name": package_name}
    response = requests.get(api_url, params)
    if response.status_code != 200:
-        print(response)
        api_url = "https://rdb.altlinux.org/api/site/package_versions"
        params = {"arch": "x86_64", "package_type": "source", "name": package_name}
        response = requests.get(api_url, params)
        if response.status_code != 200:
-            print(response)
-            raise RuntimeError(
+            raise AltAPIError(
                    f"failed to retrieve source package version: source package {package_name!r}, branch {branch!r} "
            )
        result = response.json()
@ -105,7 +121,7 @@ def api_get_source_package_version(branch: str, package_name: str) -> str:
            if v["branch"] == branch:
                return v["version"]

-        raise RuntimeError(
+        raise AltAPIError(
            f"failed to retrieve source package version: source package {package_name!r}, branch {branch!r} "
        )

@ -114,15 +130,33 @@ def api_get_source_package_version(branch: str, package_name: str) -> str:
    return result["versions"][0]["version"]


+def api_get_source_package_version_from_task(task_id: str, package_name: str):
+    api_url = f"https://rdb.altlinux.org/api/task/packages/{task_id}"
+    response = requests.get(api_url)
+    if response.status_code != 200:
+        raise AltAPIError(
+            f"failed to retrieve source package version from task: source package {package_name!r}, task_id {task_id}"
+        )
+
+    result = response.json()
+    for subtask in result["subtasks"]:
+        if subtask["source"]["name"] == package_name:
+            return subtask["source"]["version"]
+
+    raise AltAPIError(
+        f"failed to retrieve source package version from task: source package {package_name!r}, task_id {task_id}"
+    )
+
+
 class Tags:
-    def __init__(self, tags_file: str | None, latest: str):
+    def __init__(self, tags_file: Optional[str], latest: str):
        if tags_file is None:
            self._tags = None
        else:
            self._tags = tomli.loads(Path(tags_file).read_text())
        self._latest = latest

-    def tags(self, branch: str, image: Image):
+    def tags(self, branch: str, image: Image, tasks: Optional[Tasks] = None):
        if self._tags is None:
            if image.is_versioned is None:
                tags = [branch]
@ -132,10 +166,7 @@ class Tags:
            elif image.is_versioned and image.source_packages:
                package_name = image.source_packages[0]

-                if re.search("{%.*%}", package_name):
-                    package_name = Template(package_name).render(branch=branch).strip()
-                    print(f"{package_name=}")
-
+                context_version = ""
                if re.search("{{.*}}", package_name):
                    if PKG_VERSIONS is None:
                        raise RuntimeError(
@ -152,23 +183,75 @@ class Tags:
                            f"invalid version for image {image.canonical_name!r}: {PKG_VERSIONS[image.canonical_name]!r}"
                        )

-                    package_name = Template(package_name).render(
-                        version=PKG_VERSIONS[image.canonical_name]
-                    )
-                version = api_get_source_package_version(branch, package_name)
+                    context_version = PKG_VERSIONS[image.canonical_name]

+                if re.search("{%.*%}", package_name) or re.search("{{.*}}", package_name):
+                    package_name = JINJA_ENV.from_string(package_name).render(
+                        branch=branch,
+                        version=context_version,
+                    )
+
+                if tasks is not None:
+                    task_ids = tasks.get(branch, image)
+                else:
+                    task_ids = []
+
+                if task_ids:
+                    logger.info(
+                        "getting %s package version from task %s",
+                        package_name,
+                        task_ids[0],
+                    )
+                    try:
+                        version = api_get_source_package_version_from_task(
+                            task_ids[0], package_name
+                        )
+                    except AltAPIError:
+                        logger.warning(
+                            "failed getting %s package version from task %s",
+                            package_name,
+                            task_ids[0],
+                        )
+                        logger.info(
+                            "getting %s package version from repo %s",
+                            package_name,
+                            branch,
+                        )
+                        version = api_get_source_package_version(branch, package_name)
+                else:
+                    logger.info(
+                        "getting %s package version from repo %s",
+                        package_name,
+                        branch,
+                    )
+                    version = api_get_source_package_version(branch, package_name)
+
+                tags = []
                if image.version_template is not None:
-                    version = (
-                        Template(image.version_template).render(version=version).strip()
-                    )
+                    if isinstance(image.version_template, str):
+                        version_tag = (
+                            JINJA_ENV.from_string(image.version_template).render(version=version).strip()
+                        )
+                        tags.append(version_tag)
+                    elif isinstance(image.version_template, list):
+                        for v in image.version_template:
+                            version_tag = (
+                                JINJA_ENV.from_string(v).render(version=version).strip()
+                            )
+                            tags.append(version_tag)
+                    else:
+                        raise RuntimeError(f"expected type for version_template: 'str' or 'list[str]', got '{type(image.version_template)}' for image {image}")
+                else:
+                    tags.append(version)

-                tags = [version]
                tags.append("latest")
            else:
                version = datetime.now().strftime('%Y%m%d')
                if image.version_template is not None:
+                    if not isinstance(image.version_template, str):
+                        raise RuntimeError(f"expected type for version_template: 'str', got '{type(image.version_template)}' for image {image}")
                    version = (
-                        Template(image.version_template).render(version=version).strip()
+                        JINJA_ENV.from_string(image.version_template).render(version=version).strip()
                    )
                tags = [version]
                tags.append("latest")
@ -349,12 +432,13 @@ class DockerBuilder:
        else:
            registry = ""
            alt_image = "alt"
-        rendered = Template(template).render(
+        rendered = JINJA_ENV.from_string(template).render(
            alt_image=alt_image,
            branch=self.branch,
            install_packages=install_packages,
            organization=organization,
            registry=registry,
+            pkg_versions=PKG_VERSIONS,
            **kwargs,
        )

@ -455,8 +539,13 @@ class DockerBuilder:
            pre_cmd = ["echo"]
        else:
            pre_cmd = []
+
+        logger.debug("run: %s", pre_cmd + cmd)
        subprocess.run(pre_cmd + cmd, *args, **kwargs)

+    def run_with_result(self, cmd):
+        return subprocess.run(cmd, stdout=subprocess.PIPE).stdout.decode('utf-8')
+
    def distroless_build(self, image: Image, arches):
        def distroless_build_arch(arch, manifest):
            distroless_builder = self.render_full_tag(
@ -601,7 +690,7 @@ class DockerBuilder:
        build_arches = set(arches) - set(
            self.images_info.skip_arches(image.canonical_name)
        )
-        tags = self.tags.tags(self.branch, image)
+        tags = self.tags.tags(self.branch, image, self.tasks)
        manifest = self.render_full_tag(image, tags[0])

        msg = "Building image {} for {} arches".format(
@ -652,7 +741,7 @@ class DockerBuilder:
            self.images_info.skip_arches(image.canonical_name)
        )
        platforms = ",".join([f"linux/{a}" for a in build_arches])
-        tags = self.tags.tags(self.branch, image)
+        tags = self.tags.tags(self.branch, image, self.tasks)
        manifest = self.render_full_tag(image, tags[0])

        msg = "Building image {} for {} arches".format(
@ -696,6 +785,28 @@ class DockerBuilder:
            ".",
        ]

+        if image.annotations is not None:
+            build_cmd = [
+                "podman",
+                "build",
+                "--rm",
+                "--force-rm",
+                f"--manifest={manifest}",
+                f"--platform={platforms}"
+            ]
+            for akey, avalue in image.annotations.items():
+                build_cmd.append(
+                    f"--annotation={akey}={avalue}")
+
+            d = datetime.now()
+            build_cmd.append(f"--annotation=org.opencontainers.image.created={d.isoformat("T") + "Z"}")
+
+            ver = next((tag for tag in tags if tag != 'latest'), '')
+            if ver != '':
+                build_cmd.append(f"--annotation=org.opencontainers.image.version={ver}")
+
+            build_cmd.append(".")
+
        if PKG_VERSIONS is not None and image.canonical_name in PKG_VERSIONS:
            build_cmd.insert(
                -1, f"--build-arg=PKG_VERSION={PKG_VERSIONS[image.canonical_name]}"
@ -708,11 +819,12 @@ class DockerBuilder:
            tag_cmd = ["podman", "tag", manifest, other_manifest]
            self.run(tag_cmd)

+
    def podman_push(self, image: Image, sign=None):
        if self.images_info.skip_branch(image.canonical_name, self.branch):
            return

-        tags = self.tags.tags(self.branch, image)
+        tags = self.tags.tags(self.branch, image, self.tasks)
        manifests = [self.render_full_tag(image, t) for t in tags]

        for manifest in manifests:
@ -731,6 +843,7 @@ class DockerBuilder:
            self.run(cmd)


+
 class ImagesInfo:
    def __init__(self):
        info = {}
@ -765,6 +878,8 @@ def parse_args():
    images = [f"{o.name}/{i.name}" for o in organizations for i in o.iterdir()]
    organizations = [o.name for o in organizations]

+    log_levels = ["debug", "info", "warning", "error", "critical"]
+
    parser = argparse.ArgumentParser(
        formatter_class=argparse.ArgumentDefaultsHelpFormatter,
    )
@ -875,6 +990,16 @@ def parse_args():
        type=json.loads,
        help="json string where key is image name, value is the package version",
    )
+    parser.add_argument(
+        "--clean-images-limit",
+        help="remove all the images in the container storage when number of images hits the limit",
+    )
+    parser.add_argument(
+        "--log-level",
+        default="warning",
+        choices=log_levels,
+        help="log messages above specified level",
+    )
    args = parser.parse_args()

    args.stages = set(args.stages) - set(args.skip_stages)
@ -890,6 +1015,16 @@ def main():

    args = parse_args()
    PKG_VERSIONS = args.package_versions
+
+    numeric_level = getattr(logging, args.log_level.upper(), logging.WARNING)
+    logging.basicConfig(
+        level=numeric_level, format="%(asctime)s - %(levelname)s\t- %(message)s"
+    )
+
+    logger.info("PKG_VERSIONS=%s", PKG_VERSIONS)
+
+    clean_images_counter = 0
+
    arches = args.arches
    images_info = ImagesInfo()
    tags = Tags(args.tags, args.latest)
@ -911,6 +1046,7 @@ def main():
            if "render_dockerfiles" in args.stages:
                db.render_dockerfiles()
            db.load_distrolesses()
+
            for image in db.get_build_order():
                if image.canonical_name not in args.images:
                    continue
@ -924,6 +1060,23 @@ def main():
                if "push" in args.stages:
                    db.podman_push(image, args.sign)

+                if args.clean_images_limit is not None:
+                    if clean_images_counter >= args.clean_images_limit:
+                        cmd = [
+                            "podman",
+                            "rmi",
+                            "--all",
+                            "-f",
+                        ]
+                        db.run(cmd,
+                            check=False,
+                            stderr=subprocess.DEVNULL,
+                            stdout=subprocess.DEVNULL,
+                        )
+                        clean_images_counter = 0
+                    else:
+                        clean_images_counter += 1
+

 if __name__ == "__main__":
    main()
--- a/images-info.toml
+++ b/images-info.toml
@ -1,11 +1,14 @@
-["alt/buildpack-deps"]
-skip-branches = [ "p9" ]
-
-["alt/distroless-toybox"]
-skip-branches = [ "p10" ]
+["base/distroless-toybox"]
+skip-branches = [ "p10", "c10f2", "c10f1" ]

 ["alt/openjdk21"]
 skip-arches = [ "386" ]

+["alt/zot"]
+skip-arches = [ "386" ]
+
 ["alt/ansible"]
-skip-branches = [ "c10f2", "c10f1", "p10" ]
+skip-branches = [ "c10f2", "c10f1", "p10" ]
+
+["alt/buildkit"]
+skip-branches = [ "c10f1", "p10" ]
--- a/org/alt/ansible/info.yaml
+++ b/org/alt/ansible/info.yaml
@ -5,4 +5,13 @@ source_packages:
  - ansible-core
  - ansible-vim
  - ansible-lint
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'http://www.ansible.com'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'ansible'
+  org.opencontainers.image.description: 'A radically simple IT automation system'
+  org.opencontainers.image.licenses: GPL-3.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/apache2/info.yaml
+++ b/org/alt/apache2/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - apache2
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'http://httpd.apache.org'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'apache2'
+  org.opencontainers.image.description: 'The most widely used Web server on the Internet'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/base/info.yaml
+++ b/org/alt/base/info.yaml
@ -1,7 +0,0 @@
---
-is_versioned: false
-version_template: "{{ version }}"
-source_packages:
-  - glibc
-  - tzdata
-...
--- a/org/alt/buildkit/Dockerfile.template
+++ b/org/alt/buildkit/Dockerfile.template
@ -0,0 +1,16 @@
+FROM {{ registry }}{{ branch }}/base:latest
+
+MAINTAINER alt-cloud
+
+LABEL org.opencontainers.image.title="buildkit"
+LABEL org.opencontainers.image.description="Concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit"
+LABEL org.opencontainers.image.source="https://github.com/moby/buildkit"
+LABEL org.opencontainers.image.licenses="Apache-2.0"
+LABEL org.opencontainers.image.vendor="ALT Linux Team"
+
+{{ install_packages(
+    "ca-certificates",
+    "buildkit"
+) }}
+
+ENTRYPOINT ["/usr/bin/buildkitd"]
--- a/org/alt/buildkit/info.yaml
+++ b/org/alt/buildkit/info.yaml
@ -0,0 +1,15 @@
+---
+is_versioned: true
+version_template: "{{ version }}"
+source_packages:
+  - buildkit
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/moby/buildkit'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'buildkit'
+  org.opencontainers.image.description: 'Concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
+...
--- a/org/alt/buildkit/test
+++ b/org/alt/buildkit/test
@ -0,0 +1 @@
+buildkitd --version
--- a/org/alt/buildpack-deps-curl/info.yaml
+++ b/org/alt/buildpack-deps-curl/info.yaml
@ -1,9 +0,0 @@
---
-is_versioned: false
-version_template: "{{ version }}"
-source_packages:
-  - ca-certificates
-  - curl
-  - gnupg
-  - wget
-...
--- a/org/alt/buildpack-deps-scm/info.yaml
+++ b/org/alt/buildpack-deps-scm/info.yaml
@ -1,10 +0,0 @@
---
-is_versioned: false
-version_template: "{{ version }}"
-source_packages:
-  - git
-  - mercurial
-  - openssh
-  - procps
-  - subversion
-...
--- a/org/alt/buildpack-deps/info.yaml
+++ b/org/alt/buildpack-deps/info.yaml
@ -1,6 +0,0 @@
---
-is_versioned: false
-version_template: "{{ version }}"
-source_packages:
-  - gcc-defaults
-...
--- a/org/alt/devel/info.yaml
+++ b/org/alt/devel/info.yaml
@ -1,17 +0,0 @@
---
-is_versioned: false
-version_template: "{{ version }}"
-source_packages:
-  - gcc-defaults
-  - vim
-  - gdb
-  - git
-  - iproute2
-  - iputils
-  - wget
-  - curl
-  - lsof
-  - ripgrep
-  - zsh
-  - make
-...
--- a/org/alt/distroless-base/info.yaml
+++ b/org/alt/distroless-base/info.yaml
@ -1,9 +0,0 @@
---
-is_versioned: false
-version_template: "{{ version }}"
-source_packages:
-  - glibc
-  - tzdata
-  - zlib
-  - libselinux
-...
--- a/org/alt/distroless-builder/info.yaml
+++ b/org/alt/distroless-builder/info.yaml
@ -1,7 +0,0 @@
---
-is_versioned: false
-version_template: "{{ version }}"
-source_packages:
-  - glibc
-  - apt-repo
-...
--- a/org/alt/distroless-devel/info.yaml
+++ b/org/alt/distroless-devel/info.yaml
@ -1,10 +0,0 @@
---
-is_versioned: false
-version_template: "{{ version }}"
-source_packages:
-  - coreutils
-  - findutils
-  - glibc
-  - iproute2
-  - vim
-...
--- a/org/alt/distroless-gotop/info.yaml
+++ b/org/alt/distroless-gotop/info.yaml
@ -1,6 +0,0 @@
---
-is_versioned: false
-version_template: "{{ version }}"
-source_packages:
-  - gotop
-...
--- a/org/alt/distroless-static/info.yaml
+++ b/org/alt/distroless-static/info.yaml
@ -1,6 +0,0 @@
---
-is_versioned: false
-version_template: "{{ version }}"
-source_packages:
-  - distroless-static
-...
--- a/org/alt/distroless-toybox/info.yaml
+++ b/org/alt/distroless-toybox/info.yaml
@ -1,6 +0,0 @@
---
-is_versioned: false
-version_template: "{{ version }}"
-source_packages:
-  - toybox
-...
--- a/org/alt/distroless-true/info.yaml
+++ b/org/alt/distroless-true/info.yaml
@ -1,6 +0,0 @@
---
-is_versioned: false
-version_template: "{{ version }}"
-source_packages:
-  - distroless-true
-...
--- a/org/alt/etcd/Dockerfile.template
+++ b/org/alt/etcd/Dockerfile.template
@ -1,15 +0,0 @@
-FROM {{ registry }}{{ branch }}/{{ alt_image }}:latest
-
-MAINTAINER alt-cloud
-
-LABEL org.opencontainers.image.title="etcd"
-LABEL org.opencontainers.image.description="Distributed reliable key-value store for the most critical data of a distributed system"
-LABEL org.opencontainers.image.source="https://github.com/etcd-io/etcd"
-LABEL org.opencontainers.image.licenses="Apache-2.0"
-LABEL org.opencontainers.image.vendor="ALT Linux Team"
-
-{{ install_packages("etcd") }}
-
-VOLUME /data
-
-ENTRYPOINT ["/usr/sbin/etcd", "--data-dir", "/data"]
--- a/org/alt/etcd/README.md
+++ b/org/alt/etcd/README.md
@ -1,13 +0,0 @@
-dockerfiles-alt-etcd
-=========================
-
-ALT dockerfile for etcd.
-
-Copy Dockerfile somewhere and build the image:
-`$ docker build --rm -t <username>/etcd.`
-
-And launch the etcd container:
-`docker run -d -v <etcd data dir>:/data <username>/etcd`
-
-If etcdclt watnted it could be run via:
-`docker run --entrypoint etcdctl <username>/etcd`
--- a/org/alt/etcd/info.yaml
+++ b/org/alt/etcd/info.yaml
@ -1,6 +0,0 @@
---
-is_versioned: true
-version_template: "{{ version }}"
-source_packages:
-  - etcd
-...
--- a/org/alt/etcd/test
+++ b/org/alt/etcd/test
@ -1 +0,0 @@
-etcdctl version
--- a/org/alt/gitea/info.yaml
+++ b/org/alt/gitea/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - gitea
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/go-gitea/gitea'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'gitea'
+  org.opencontainers.image.description: 'Git with a cup of tea, painless self-hosted git service'
+  org.opencontainers.image.licenses: MIT
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/golang/info.yaml
+++ b/org/alt/golang/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - golang
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/golang/go'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'golang'
+  org.opencontainers.image.description: 'The Golang environment for development'
+  org.opencontainers.image.licenses: BSD
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/grafana/info.yaml
+++ b/org/alt/grafana/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - grafana
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/grafana/grafana'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'grafana'
+  org.opencontainers.image.description: 'Metrics dashboard and graph editor'
+  org.opencontainers.image.licenses: 'AGPL-3.0-only AND Apache-2.0'
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/loki/info.yaml
+++ b/org/alt/loki/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - loki
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/grafana/loki'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'loki'
+  org.opencontainers.image.description: 'Like Prometheus, but for logs'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/nginx/Dockerfile.template
+++ b/org/alt/nginx/Dockerfile.template
@ -15,7 +15,7 @@ RUN cd /etc/nginx/sites-enabled.d && ln -s ../sites-available.d/default.conf .
 RUN ln -sf /dev/stdout /var/log/nginx/access.log
 RUN ln -sf /dev/stderr /var/log/nginx/error.log

-RUN sed -Ei 's/^([[:space:]]*listen[[:space:]]+)localhost(:80)/\10.0.0.0\2/' \
+RUN sed -Ei 's/^([[:space:]]*listen[[:space:]]+)(localhost|127.0.0.1)(:80)/\10.0.0.0\3/' \
            /etc/nginx/sites-available.d/default.conf

 EXPOSE 80
--- a/org/alt/nginx/info.yaml
+++ b/org/alt/nginx/info.yaml
@ -5,4 +5,13 @@ source_packages:
  - nginx
  - apache2
  - tzdata
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://nginx.org/'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'nginx'
+  org.opencontainers.image.description: 'Fast HTTP server, extremely useful as an Apache frontend'
+  org.opencontainers.image.licenses: BSD
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/node/info.yaml
+++ b/org/alt/node/info.yaml
@ -4,4 +4,13 @@ version_template: "{{ version }}"
 source_packages:
  - node
  - yarn
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/nodejs/node'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'node'
+  org.opencontainers.image.description: 'Evented I/O for V8 Javascript'
+  org.opencontainers.image.licenses: MIT
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/openjdk21/info.yaml
+++ b/org/alt/openjdk21/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - java-21-openjdk
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://openjdk-sources.osci.io'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'openjdk21'
+  org.opencontainers.image.description: 'OpenJDK 21 Runtime Environment'
+  org.opencontainers.image.licenses: 'Apache-1.1 and Apache-2.0 and BSD and BSD with advertising and GPL-2.0 and GPL-2.0 with exceptions and IJG and LGPL-2.0+ and MIT and MPL-2.0 and ALT-Public-Domain and W3C and Zlib and ISC and FTL and RSA-MD'
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/php/info.yaml
+++ b/org/alt/php/info.yaml
@ -3,9 +3,18 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - >
-    {% if branch in [ "p10", "c10f1", "c10f2"] %}
-    {% raw %}php8.2{% endraw %}
-    {% else %}
+    {%- if branch in [ "p10", "c10f1", "c10f2"] -%}
+    php8.2
+    {%- else -%}
    php8.3
-    {% endif %}
+    {%- endif -%}
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/php/php-src'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'php'
+  org.opencontainers.image.description: 'The PHP language environment for development'
+  org.opencontainers.image.licenses: PHP-3.01
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/postgresql/info.yaml
+++ b/org/alt/postgresql/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - postgresql16
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/postgres/postgres'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'postgresql16'
+  org.opencontainers.image.description: 'PostgreSQL rograms and libraries'
+  org.opencontainers.image.licenses: PostgreSQL
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/prometheus-alertmanager/Dockerfile.template
+++ b/org/alt/prometheus-alertmanager/Dockerfile.template
@ -2,7 +2,7 @@ FROM {{ registry }}{{ branch }}/{{ alt_image }}:latest

 MAINTAINER alt-cloud

-LABEL org.opencontainers.image.title="alertmanager"
+LABEL org.opencontainers.image.title="prometheus-alertmanager"
 LABEL org.opencontainers.image.description="The Alertmanager handles alerts sent by client applications"
 LABEL org.opencontainers.image.source="https://github.com/prometheus/alertmanager"
 LABEL org.opencontainers.image.licenses="Apache-2.0"
--- a/org/alt/prometheus-alertmanager/info.yaml
+++ b/org/alt/prometheus-alertmanager/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - prometheus-alertmanager
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/prometheus/alertmanager'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'prometheus-alertmanager'
+  org.opencontainers.image.description: 'The Alertmanager handles alerts sent by client applications'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/prometheus-node_exporter/info.yaml
+++ b/org/alt/prometheus-node_exporter/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - prometheus-node_exporter
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/prometheus/node_exporter'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'prometheus-node_exporter'
+  org.opencontainers.image.description: 'Prometheus exporter for hardware and OS metrics exposed by *NIX kernels'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/prometheus/info.yaml
+++ b/org/alt/prometheus/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - prometheus
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/prometheus/prometheus'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'prometheus'
+  org.opencontainers.image.description: 'Prometheus monitoring system and time series database'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/python/info.yaml
+++ b/org/alt/python/info.yaml
@ -2,8 +2,17 @@
 is_versioned: true
 version_template: "{{ version }}"
 source_packages:
+  - python3
  - python3-module-setuptools
-  - python3-dev
  - python3-module-pip
  - gcc-defaults
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/python/cpython'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'python'
+  org.opencontainers.image.description: 'Python 3 and tools needed for development'
+  org.opencontainers.image.licenses: Python
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/python2/info.yaml
+++ b/org/alt/python2/info.yaml
@ -2,7 +2,16 @@
 is_versioned: true
 version_template: "{{ version }}"
 source_packages:
+  - python
  - python-module-setuptools
-  - python-dev
  - gcc-defaults
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://www.python.org/downloads/source'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'python'
+  org.opencontainers.image.description: 'Python 2 and tools needed for development'
+  org.opencontainers.image.licenses: Python-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/rabbitmq/info.yaml
+++ b/org/alt/rabbitmq/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - rabbitmq-server
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/rabbitmq/rabbitmq-server'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'rabbitmq'
+  org.opencontainers.image.description: 'The RabbitMQ server'
+  org.opencontainers.image.licenses: MPL-1.1
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/registry/info.yaml
+++ b/org/alt/registry/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - docker-registry
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/docker/distribution'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'registry'
+  org.opencontainers.image.description: 'The Docker toolset to pack, ship, store, and deliver content'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/ruby/info.yaml
+++ b/org/alt/ruby/info.yaml
@ -3,9 +3,18 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - >
-    {% if branch in ["p10", "c10f2", "c10f1"] %}
-    {% raw %}ruby{% endraw %}
-    {% else %}
+    {%- if branch in ["p10", "c10f2", "c10f1"] -%}
+    ruby
+    {%- else -%}
    gem-irb
-    {% endif %}
+    {%- endif -%}
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/ruby/ruby'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'ruby'
+  org.opencontainers.image.description: 'Interactive Ruby Shell'
+  org.opencontainers.image.licenses: 'BSD-2-Clause or Ruby'
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/systemd/info.yaml
+++ b/org/alt/systemd/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - systemd
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/systemd/systemd'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'systemd'
+  org.opencontainers.image.description: 'System and Session Manager'
+  org.opencontainers.image.licenses: LGPLv2.1+
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/trivy/info.yaml
+++ b/org/alt/trivy/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - trivy
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://aquasecurity.github.io/trivy'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'trivy'
+  org.opencontainers.image.description: 'A Fast Vulnerability Scanner for Containers'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/unit/info.yaml
+++ b/org/alt/unit/info.yaml
@ -5,4 +5,13 @@ source_packages:
  - unit
  - curl
  - tzdata
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/nginx/unit'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'unit'
+  org.opencontainers.image.description: 'NGINX Unit is a lightweight and versatile web-server'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/alt/zot/info.yaml
+++ b/org/alt/zot/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: "{{ version }}"
 source_packages:
  - zot
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/project-zot/zot'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'zot'
+  org.opencontainers.image.description: 'A production-ready vendor-neutral OCI-native container image registry (purely based on OCI Distribution Specification)'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/base/base/Dockerfile.template
+++ b/org/base/base/Dockerfile.template
--- a/org/base/base/README.md
+++ b/org/base/base/README.md
--- a/org/base/base/info.yaml
+++ b/org/base/base/info.yaml
@ -0,0 +1,16 @@
+---
+is_versioned: false
+version_template: "{{ version }}"
+source_packages:
+  - glibc
+  - tzdata
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: ''
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: base
+  org.opencontainers.image.licenses: GPLv2
+  org.opencontainers.image.vendor: 'ALT Linux Team'
+  org.opencontainers.image.description: 'Base image with localization and timezone packages'
+...
--- a/org/base/base/test
+++ b/org/base/base/test
--- a/org/base/buildpack-deps-curl/Dockerfile.template
+++ b/org/base/buildpack-deps-curl/Dockerfile.template
--- a/org/base/buildpack-deps-curl/info.yaml
+++ b/org/base/buildpack-deps-curl/info.yaml
@ -0,0 +1,18 @@
+---
+is_versioned: false
+version_template: "{{ version }}"
+source_packages:
+  - ca-certificates
+  - curl
+  - gnupg
+  - wget
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: ''
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'buildpack-deps-curl'
+  org.opencontainers.image.description: 'Transfer data environment'
+  org.opencontainers.image.licenses: GPLv2
+  org.opencontainers.image.vendor: 'ALT Linux Team'
+...
--- a/org/base/buildpack-deps-curl/test
+++ b/org/base/buildpack-deps-curl/test
--- a/org/base/buildpack-deps-scm/Dockerfile.template
+++ b/org/base/buildpack-deps-scm/Dockerfile.template
--- a/org/base/buildpack-deps-scm/info.yaml
+++ b/org/base/buildpack-deps-scm/info.yaml
@ -0,0 +1,19 @@
+---
+is_versioned: false
+version_template: "{{ version }}"
+source_packages:
+  - git
+  - mercurial
+  - openssh
+  - procps
+  - subversion
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: ''
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'buildpack-deps-scm'
+  org.opencontainers.image.description: 'Software configuration management environment'
+  org.opencontainers.image.licenses: GPLv2
+  org.opencontainers.image.vendor: 'ALT Linux Team'
+...
--- a/org/base/buildpack-deps-scm/test
+++ b/org/base/buildpack-deps-scm/test
--- a/org/base/buildpack-deps/Dockerfile.template
+++ b/org/base/buildpack-deps/Dockerfile.template
--- a/org/base/buildpack-deps/info.yaml
+++ b/org/base/buildpack-deps/info.yaml
@ -0,0 +1,15 @@
+---
+is_versioned: false
+version_template: "{{ version }}"
+source_packages:
+  - gcc-defaults
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: ''
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'buildpack-deps'
+  org.opencontainers.image.description: 'Projects building environment'
+  org.opencontainers.image.licenses: GPLv2
+  org.opencontainers.image.vendor: 'ALT Linux Team'
+...
--- a/org/base/buildpack-deps/test
+++ b/org/base/buildpack-deps/test
--- a/org/base/devel/Dockerfile.template
+++ b/org/base/devel/Dockerfile.template
--- a/org/base/devel/README.md
+++ b/org/base/devel/README.md
--- a/org/base/devel/info.yaml
+++ b/org/base/devel/info.yaml
@ -0,0 +1,26 @@
+---
+is_versioned: false
+version_template: "{{ version }}"
+source_packages:
+  - gcc-defaults
+  - vim
+  - gdb
+  - git
+  - iproute2
+  - iputils
+  - wget
+  - curl
+  - lsof
+  - ripgrep
+  - zsh
+  - make
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: ''
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'devel'
+  org.opencontainers.image.description: 'This image is only for devel or testing purposes'
+  org.opencontainers.image.licenses: GPLv2
+  org.opencontainers.image.vendor: 'ALT Linux Team'
+...
--- a/org/base/devel/test
+++ b/org/base/devel/test
--- a/org/base/distroless-base/README.md
+++ b/org/base/distroless-base/README.md
--- a/org/base/distroless-base/distroless.toml
+++ b/org/base/distroless-base/distroless.toml
--- a/org/base/distroless-base/info.yaml
+++ b/org/base/distroless-base/info.yaml
@ -0,0 +1,18 @@
+---
+is_versioned: false
+version_template: "{{ version }}"
+source_packages:
+  - glibc
+  - tzdata
+  - zlib
+  - libselinux
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: ''
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'distroless-base'
+  org.opencontainers.image.description: 'Base image for running dynamically linked programs'
+  org.opencontainers.image.licenses: GPLv2
+  org.opencontainers.image.vendor: 'ALT Linux Team'
+...
--- a/org/base/distroless-builder/Dockerfile.template
+++ b/org/base/distroless-builder/Dockerfile.template
--- a/org/base/distroless-builder/README.md
+++ b/org/base/distroless-builder/README.md
--- a/org/base/distroless-builder/distroless-builder.py
+++ b/org/base/distroless-builder/distroless-builder.py
--- a/org/base/distroless-builder/info.yaml
+++ b/org/base/distroless-builder/info.yaml
@ -0,0 +1,16 @@
+---
+is_versioned: false
+version_template: "{{ version }}"
+source_packages:
+  - glibc
+  - apt-repo
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: ''
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'distroless-builder'
+  org.opencontainers.image.description: 'This image is used to build tarballs for distroless images'
+  org.opencontainers.image.licenses: GPLv2
+  org.opencontainers.image.vendor: 'ALT Linux Team'
+...
--- a/org/base/distroless-builder/test
+++ b/org/base/distroless-builder/test
--- a/org/base/distroless-devel/README.md
+++ b/org/base/distroless-devel/README.md
--- a/org/base/distroless-devel/distroless.toml
+++ b/org/base/distroless-devel/distroless.toml
--- a/org/base/distroless-devel/info.yaml
+++ b/org/base/distroless-devel/info.yaml
@ -0,0 +1,19 @@
+---
+is_versioned: false
+version_template: "{{ version }}"
+source_packages:
+  - coreutils
+  - findutils
+  - glibc
+  - iproute2
+  - vim
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: ''
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'distroless-devel'
+  org.opencontainers.image.description: 'Base image for creating and debugging distroless images'
+  org.opencontainers.image.licenses: GPLv2
+  org.opencontainers.image.vendor: 'ALT Linux Team'
+...
--- a/org/base/distroless-devel/test
+++ b/org/base/distroless-devel/test
--- a/org/base/distroless-gotop/README.md
+++ b/org/base/distroless-gotop/README.md
--- a/org/base/distroless-gotop/distroless.toml
+++ b/org/base/distroless-gotop/distroless.toml
--- a/org/base/distroless-gotop/info.yaml
+++ b/org/base/distroless-gotop/info.yaml
@ -0,0 +1,15 @@
+---
+is_versioned: false
+version_template: "{{ version }}"
+source_packages:
+  - gotop
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: ''
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'distroless-gotop'
+  org.opencontainers.image.description: 'Gotop image'
+  org.opencontainers.image.licenses: GPLv2
+  org.opencontainers.image.vendor: 'ALT Linux Team'
+...
--- a/org/base/distroless-static/README.md
+++ b/org/base/distroless-static/README.md
--- a/org/base/distroless-static/distroless.toml
+++ b/org/base/distroless-static/distroless.toml
--- a/org/base/distroless-static/info.yaml
+++ b/org/base/distroless-static/info.yaml
@ -0,0 +1,15 @@
+---
+is_versioned: false
+version_template: "{{ version }}"
+source_packages:
+  - distroless-static
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: ''
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'distroless-static'
+  org.opencontainers.image.description: 'Base image for running statically linked programs'
+  org.opencontainers.image.licenses: GPLv2
+  org.opencontainers.image.vendor: 'ALT Linux Team'
+...
--- a/org/base/distroless-static/static.list
+++ b/org/base/distroless-static/static.list
--- a/org/base/distroless-toybox/README.md
+++ b/org/base/distroless-toybox/README.md
--- a/org/base/distroless-toybox/distroless.toml
+++ b/org/base/distroless-toybox/distroless.toml
--- a/org/base/distroless-toybox/info.yaml
+++ b/org/base/distroless-toybox/info.yaml
@ -0,0 +1,15 @@
+---
+is_versioned: false
+version_template: "{{ version }}"
+source_packages:
+  - toybox
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: ''
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'distroless-toybox'
+  org.opencontainers.image.description: 'Base image with toybox environment'
+  org.opencontainers.image.licenses: GPLv2
+  org.opencontainers.image.vendor: 'ALT Linux Team'
+...
--- a/org/base/distroless-true/README.md
+++ b/org/base/distroless-true/README.md
--- a/org/base/distroless-true/distroless.toml
+++ b/org/base/distroless-true/distroless.toml
--- a/org/base/distroless-true/info.yaml
+++ b/org/base/distroless-true/info.yaml
@ -0,0 +1,15 @@
+---
+is_versioned: false
+version_template: "{{ version }}"
+source_packages:
+  - distroless-true
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: ''
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'distroless-true'
+  org.opencontainers.image.description: 'True-command image for zero status returning'
+  org.opencontainers.image.licenses: GPLv2
+  org.opencontainers.image.vendor: 'ALT Linux Team'
+...
--- a/org/k8s/cert-manager-acmesolver/info.yaml
+++ b/org/k8s/cert-manager-acmesolver/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: v{{ version }}
 source_packages:
  - cert-manager
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/cert-manager/cert-manager'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'cert-manager-acmesolver'
+  org.opencontainers.image.description: 'HTTP server used to solve ACME challenges'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/k8s/cert-manager-cainjector/info.yaml
+++ b/org/k8s/cert-manager-cainjector/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: v{{ version }}
 source_packages:
  - cert-manager
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/cert-manager/cert-manager'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'cert-manager-cainjector'
+  org.opencontainers.image.description: 'cert-manager CA injector is a Kubernetes addon to automate the injection of CA data into webhooks and APIServices from cert-manager certificates'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/k8s/cert-manager-controller/info.yaml
+++ b/org/k8s/cert-manager-controller/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: v{{ version }}
 source_packages:
  - cert-manager
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/cert-manager/cert-manager'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'cert-manager-controller'
+  org.opencontainers.image.description: 'Automatically provision and manage TLS certificates in Kubernetes'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/k8s/cert-manager-startupapicheck/info.yaml
+++ b/org/k8s/cert-manager-startupapicheck/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: v{{ version }}
 source_packages:
  - cert-manager
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/cert-manager/cert-manager'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'cert-manager-startupapicheck'
+  org.opencontainers.image.description: 'Check that cert-manager started successfully'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/org/k8s/cert-manager-webhook/info.yaml
+++ b/org/k8s/cert-manager-webhook/info.yaml
@ -3,4 +3,13 @@ is_versioned: true
 version_template: v{{ version }}
 source_packages:
  - cert-manager
+annotations:
+  org.opencontainers.image.revision: ''
+  org.opencontainers.image.source: 'https://github.com/cert-manager/cert-manager'
+  org.opencontainers.image.url: ''
+  org.opencontainers.image.version: ''
+  org.opencontainers.image.title: 'cert-manager-webhook'
+  org.opencontainers.image.description: 'The webhook component provides API validation, mutation and conversion functionality for cert-manager'
+  org.opencontainers.image.licenses: Apache-2.0
+  org.opencontainers.image.vendor: 'ALT Linux Team'
 ...
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
Alexander Stepchenko	c566737887	feat(build.py): clean images only if specified through cli option	2025-07-21 21:18:49 +03:00
Alexander Stepchenko	9f8548c170	feat(build.py): get package version from repo if couldn't from task	2025-07-17 14:01:43 +03:00
Alexander Stepchenko	77ec13db3b	fix(build.py): use identity check instead of equality for None	2025-07-17 13:58:42 +03:00
Alexander Stepchenko	d4d68fd1c6	style: remove trailing whitespace	2025-07-17 13:18:49 +03:00
Nadezhda Fedorova	3cf886ca28	add annotations to info.yaml for all images templates	2025-07-09 17:01:11 +03:00
Nadezhda Fedorova	fb6bde6ec4	add reading annotainsions form info.yaml and adding to manifest	2025-07-09 17:00:30 +03:00
Nadezhda Fedorova	14d59e886f	fix(build.py): add cleaning images during building process to fix workflow's error 'no space left on device'	2025-06-26 15:39:51 +03:00
Alexander Stepchenko	6302f3c4ef	feat(k8s/coredns): simplify coredns templates	2025-06-26 13:49:08 +03:00
Nadezhda Fedorova	7df06eebcb	update versions for k8s	2025-06-25 12:54:06 +03:00
Nadezhda Fedorova	e52c1c1420	fix k8s wf	2025-06-25 12:53:40 +03:00
Nadezhda Fedorova	56f573bfa9	delete duplicate excluding from images-info.toml	2025-06-24 21:50:40 +03:00
Nadezhda Fedorova	e03773565e	delete special building from wf for alt/etcd	2025-06-24 21:39:51 +03:00
Nadezhda Fedorova	c329b429dd	skip building 386 arch for zot in new version 2.1.4	2025-06-24 21:18:25 +03:00
Nadezhda Fedorova	daf6389f52	fix(.gitea/workflows/testscript): add quiet flag to test commands	2025-06-24 12:59:28 +03:00
Nadezhda Fedorova	6fdb4dec78	fix(org/kubevirt/virt-handler/Dockerfile.template): fix config virt-handler for new version 1.5.0	2025-06-24 12:37:04 +03:00
Nadezhda Fedorova	586fe0210e	fix(.gitea/workflows/wf_k8s.yaml): ignore error in c10f2-label-setting step	2025-06-24 12:33:54 +03:00
Nadezhda Fedorova	129859feec	add etcd and new version for p11 and c10f2	2025-06-24 12:33:54 +03:00
Nadezhda Fedorova	34540c6250	fix vendor label for c10f2, add version k8s for c10f2	2025-06-24 12:33:54 +03:00
Nadezhda Fedorova	b40b8691ad	Add workflow for building all versions kube sound config	2025-06-24 12:33:54 +03:00
Alexander Stepchenko	6cbde103dd	fix(alt/php, alt/ruby): strip whitespace, don't use 'raw' blocks	2025-06-18 11:20:32 +03:00
Nadezhda Fedorova	14c787b0db	delete org/alt/etcd (duplicate org/k8s/etcd)	2025-06-18 10:42:19 +03:00
Nadezhda Fedorova	d161930947	fix(.gitea/workflow): change vendor label for c10f2 in single workflow	2025-06-17 18:15:04 +03:00
Alexander Stepchenko	0c426721dd	k8s/coredns: check key in dict before using it	2025-06-17 17:54:49 +03:00
Alexander Stepchenko	0d08c6f88f	build: pass tasks for distroless images	2025-06-17 14:24:35 +03:00
Alexander Stepchenko	a56bc4eb06	k8s/coredns: update templates	2025-05-28 21:15:48 +03:00
Alexander Stepchenko	739b5d8eba	better handle templates with variables and control flow in info.yaml	2025-05-28 21:14:29 +03:00
Alexander Stepchenko	941b8fb599	support python 3.9	2025-05-16 14:52:01 +03:00
Alexander Stepchenko	aacaf22d79	feat(k8s/etcd): add etcd image for kubernetes	2025-05-12 13:44:30 +03:00
Nadezhda Fedorova	2d5df6ea4c	fix command error vendor label for c10f2	2025-05-07 12:11:51 +03:00
Nadezhda Fedorova	626b6feb4c	fix vendor label for c10f2 in dostroless templates	2025-05-07 10:24:12 +03:00
Nadezhda Fedorova	69e7c13ea2	fix(.gitea/workflow): change vendor label for c10f2	2025-05-06 13:02:15 +03:00
Alexander Stepchenko	d47bc5a030	fix(alt/nginx): listen on 0.0.0.0 in nginx image	2025-04-17 22:03:44 +03:00
Alexander Stepchenko	9702a487d7	fix(k8s/flannel-cni-plugin): make excpetion for 1.4.0	2025-04-16 13:50:46 +03:00
Nadezhda Fedorova	c3398350b7	fix(workflow single image): fix image path in test step	2025-04-14 16:16:02 +03:00
Nadezhda Fedorova	c6011932ec	add quotes buildkit-image tag info	2025-04-14 15:31:47 +03:00
Nadezhda Fedorova	b1a9067f7d	delete 'v' from buildkit-image tag	2025-04-14 15:22:21 +03:00
Nadezhda Fedorova	2755b77312	fix(workflow single image): fix image path in test step	2025-04-14 15:21:12 +03:00
Alexander Stepchenko	61993c8c67	fix(build): don't print responses	2025-04-12 22:07:48 +03:00
Alexander Stepchenko	8831b5d4f3	fix(k8s/flannel-cni-plugin): properly set image tag	2025-04-12 22:02:53 +03:00
Maxim Slipenko	c9361ef016	add test for buildkit image	2025-04-10 16:50:32 +03:00
Maxim Slipenko	bb0eb56454	add buildkit image	2025-04-10 16:32:58 +03:00
Nadezhda Fedorova	059f378d62	Fix wf mistake	2025-03-21 17:20:30 +03:00
Nadezhda Fedorova	c0534070b3	Fix wf mistake	2025-03-21 17:15:21 +03:00
Nadezhda Fedorova	ede851f34f	Add version building param for etcd	2025-03-21 16:59:51 +03:00
Nadezhda Fedorova	b1867f776f	Fix wf mistake	2025-03-21 15:37:45 +03:00
Nadezhda Fedorova	686bed6efa	Fix wf mistake	2025-03-21 15:23:02 +03:00
Nadezhda Fedorova	124ed4ff29	Fix wf mistake	2025-03-21 15:03:33 +03:00
Nadezhda Fedorova	a5d6c2d543	Fix wf steps order	2025-03-21 13:31:27 +03:00
Nadezhda Fedorova	ba6faf6d32	Add log-level to workflow, fix singl wf to new repo structure	2025-03-21 13:15:24 +03:00
Alexander Stepchenko	8bd17b82bc	docs: update version_template description in README.md	2025-03-21 13:08:42 +03:00
Alexander Stepchenko	20c4e922df	fix(build): remove usage of branch when it is unavailable	2025-03-21 13:08:42 +03:00
Alexander Stepchenko	c3778f6436	feat(alt/etcd): update Dockerfile and info.yaml	2025-03-21 13:08:42 +03:00
Alexander Stepchenko	5a22edb089	feat(build): allow version_template to be a list of strings	2025-03-21 13:08:42 +03:00
Alexander Stepchenko	4ba29556fe	feat(build): log when running external commands	2025-03-21 13:08:42 +03:00
Alexander Stepchenko	4db1672f06	feat(build): allow querying package versions from tasks	2025-03-21 13:08:42 +03:00
Alexander Stepchenko	24c24ddd57	feat(build): introduce logging	2025-03-21 13:08:42 +03:00
Nadezhda Fedorova	97478923d3	Add exlusion building for base image with risc arch, delete excess deps	2025-03-21 12:29:59 +03:00
Nadezhda Fedorova	a670e7847c	Add exclusion branches 'c10f2', 'c10f1' for image alt/distroless-toybox	2025-03-03 16:49:39 +03:00
Alexander Stepchenko	c24ac6f89a	Place python3 package first in the list The first package in the list is used to form the image tag based on the package version.	2025-02-24 17:06:29 +03:00
Alexander Stepchenko	5c47e2296d	Fix typo	2025-02-23 15:14:47 +03:00
Alexander Stepchenko	34405300aa	Add kmod and ipset to kube-proxy image for IPVS mode	2025-02-10 10:57:34 +03:00
Alexander Stepchenko	7ee8840061	Add mount package to kubelet image This is for closer resemblance with upstream kubernetes images.	2025-02-03 12:34:16 +03:00
Alexander Stepchenko	a36a9d974e	Add package nftables to kube-proxy image This is for closer resemblance with upstream kubernetes images.	2025-02-03 12:34:16 +03:00
Alexander Stepchenko	8ef16f6ea7	Make symlinks to /usr/local and use them as entrypoints This is for closer resemblance with upstream kubernetes images.	2025-02-03 12:34:16 +03:00
Nadezhda Fedorova	6668dc4d6a	fix building command in workflow	2025-01-14 22:51:30 +03:00
Nadezhda Fedorova	ae109e7adf	delete exclusion building of distroless-devel from workflow	2025-01-14 22:44:10 +03:00
Nadezhda Fedorova	48a422a735	cut out base images for isolated building	2025-01-14 13:01:00 +03:00
Nadezhda Fedorova	efaa4b0aab	add kubevirt images	2024-12-23 15:29:30 +03:00