Skip to content

new(buildah): github.com/containers/buildah recipe (OCI-image builder) #13044

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
jhheider merged 9 commits into from
May 30, 2026
+63 −0
Merged

new(buildah): github.com/containers/buildah recipe (OCI-image builder) #13044

Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
6ea612f
new(github.com/containers/buildah): OCI-image builder
tannevaled May 29, 2026
9736759
fix(buildah): use freedesktop.org/pkg-config (pkgconf.org isn't a pan…
tannevaled May 29, 2026
eabd2f5
Update package.yml for buildah configuration
jhheider May 29, 2026
730776b
Fix formatting issues in package.yml
jhheider May 30, 2026
937fa8e
Fix conditional check for man page installation
jhheider May 30, 2026
36c0a6f
Refactor man page installation in package.yml
jhheider May 30, 2026
636cdd0
Update package.yml
jhheider May 30, 2026
9925d6d
Update bash completion generation command
jhheider May 30, 2026
2bb7b35
Remove shell completion installation steps
jhheider May 30, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
63 changes: 63 additions & 0 deletions projects/github.com/containers/buildah/package.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,63 @@
# Buildah — OCI-image builder.
#
# Daemonless tool for building OCI/Docker container images. Same
# family as podman (already in pantry); buildah focuses on the image
# *building* side, podman on the image-running side.
#
# Linux-only: buildah uses Linux-specific syscalls (mount namespaces,
# unshare, user namespaces, fs overlay) that have no macOS equivalent.

distributable:
url: https://github.com/containers/buildah/archive/refs/tags/{{ version.tag }}.tar.gz
strip-components: 1

versions:
github: containers/buildah/releases/tags

platforms:
- linux

dependencies:
gnupg.org/gpgme: '*'
github.com/seccomp/libseccomp: '*'

build:
dependencies:
go.dev: '*'
env:
BUILDTAGS: "seccomp exclude_graphdriver_btrfs exclude_graphdriver_devicemapper containers_image_openpgp"
script:
# Buildah's Makefile auto-detects optional storage backends
# (btrfs, lvm/devmapper, ostree, libsubid) and adds build tags
# accordingly. We don't ship those in pantry, so we explicitly
# narrow the build to the minimum SECURITY + STORAGE set:
#
# - seccomp (always — required for kernel-level container security)
# - exclude_graphdriver_btrfs (no btrfs)
# - exclude_graphdriver_devicemapper (no lvm)
# - no ostree, no libsubid
#
# This still produces a functional buildah for the overlayfs +
# vfs storage backends, which is what most consumers want.
#
# Skip the hack/*.sh scripts that probe the host — they'd report
# "not installed" anyway and we want predictable output.

- make --jobs {{ hw.concurrency }} GO_BUILD="go build" buildah

- install -Dm755 bin/buildah "{{prefix}}/bin/buildah"

test:
# `buildah --version` returns "buildah version X.Y.Z (...)" — pin
# against the marketing version since the trailing parens contain
# the git commit which we don't want to match against.
- out=$(buildah --version 2>&1 | head -1)
- 'echo "buildah --version: $out"'
- |
case "$out" in
"buildah version {{version}}"*) echo PASS ;;
*) echo "FAIL: expected v{{version}}, got $out"; exit 1 ;;
esac

provides:
- bin/buildah
Loading