fix: Set correct operator image in init containers (#1530)

* fix: Set correct operator image in init containers

  - Add missing IMG build-arg to Docker builds in publish workflow
  - Add OPERATOR_IMAGE env var to Helm deployment template
  - Fix GHCR build to use correct registry URL instead of Quay.io
  - Ensures init-config containers use proper versioned images instead of :latest

  Resolves issue where init-config containers defaulted to :latest tag
  when GenerateConfigInInitContainer feature gate was enabled.

Signed-off-by: yangw <[email protected]>

* adjust image

Signed-off-by: yangw <[email protected]>

---------

Signed-off-by: yangw <[email protected]>

Author: drivebyer

.github/workflows/publish-image.yaml

@@ -39,11 +39,13 @@ jobs:
         with:
           context: .
           file: Dockerfile
+          platforms: linux/amd64,linux/arm64
           push: true
+          build-args: |
+            IMG=${{ env.REGISTRY }}/${{ env.REPOSITORY }}/redis-operator:${{ env.TAG }}
           tags: |
             ${{ env.REGISTRY }}/${{ env.REPOSITORY }}/redis-operator:${{ env.TAG }}
             ${{ env.REGISTRY }}/${{ env.REPOSITORY }}/redis-operator:latest
-          platforms: linux/amd64,linux/arm64
 
   release-quay-image:
     runs-on: ubuntu-latest
@@ -76,36 +78,8 @@ jobs:
           file: Dockerfile
           platforms: linux/amd64,linux/arm64
           push: true
+          build-args: |
+            IMG=${{ env.QuayImageName }}:${{ env.TAG }}
           tags: |
             ${{ env.QuayImageName }}:${{ env.TAG }}
-            ${{ env.QuayImageName }}:latest
-
-#   trivy_scan:
-#     needs: [release_image]
-#     runs-on: ubuntu-latest
-#     steps:
-#     - name: Checkout
-#       uses: actions/checkout@v2
-#     - name: Run Trivy vulnerability scanner for arm64 image
-#       uses: aquasecurity/trivy-action@master
-
-#     - name: Run Trivy vulnerability scanner for multi-arch image
-#       uses: aquasecurity/trivy-action@master
-#       with:
-#         image-ref: ${{ env.QuayImageName }}:${{ env.APP_VERSION }}
-#         format: 'template'
-#         template: '@/contrib/sarif.tpl'
-#         output: 'trivy-results-latest.sarif'
-#         exit-code: '1'
-#         ignore-unfixed: true
-#         severity: 'CRITICAL,HIGH'
-#     - name: Run Trivy vulnerability scanner for latest image
-#       uses: aquasecurity/trivy-action@master
-#       with:
-#         image-ref:  ${{ env.QuayImageName }}:latest
-#         format: 'template'
-#         template: '@/contrib/sarif.tpl'
-#         output: 'trivy-results-latest.sarif'
-#         exit-code: '1'
-#         ignore-unfixed: true
-#         severity: 'CRITICAL,HIGH'
+            ${{ env.QuayImageName }}:latest

charts/redis-operator/Chart.yaml

@@ -6,7 +6,6 @@ description: Provides easy redis setup definitions for Kubernetes services, and
 engine: gotpl
 maintainers:
   - name: iamabhishek-dubey
-  
   - name: sandy724
   - name: shubham-cmyk
 name: redis-operator

charts/redis-operator/templates/operator-deployment.yaml

@@ -86,6 +86,8 @@ spec:
           readOnly: true
       {{- end }}
         env:
+        - name: OPERATOR_IMAGE
+          value: {{ .Values.redisOperator.imageName }}:{{ .Values.redisOperator.imageTag | default (printf "v%s" .Chart.AppVersion) }}
         - name: ENABLE_WEBHOOKS
           value: {{ .Values.redisOperator.webhook | quote }}
         {{- if .Values.redisOperator.watchNamespace }}