The documentation for this version is available at the Earthly 0.7 documentation page.
Earthly CI
Earthly 0.7 is the first version compatible with Earthly CI.
Earthly 0.7 introduces the new keywords PIPELINE and TRIGGER to help define Earthly CI pipelines.
my-pipeline:
PIPELINE --push
TRIGGER push main
TRIGGER pr main
BUILD +my-target
For more information on how to use PIPELINE and TRIGGER, please see the reference documentation.
Podman support
Podman support has now been promoted out of beta status and is generally available in 0.7. Earthly will automatically detect the container frontend, whether that's docker or podman and use it automatically for running Buildkit locally, or for outputting images locally resulting from the build.
Please note that rootful podman is required. Rootless podman is not supported.
VERSION is now mandatory
The VERSION command
is now required for all Earthfiles, and an error will occur if it is missing. If you are not ready to update your
Earthfiles to use 0.7 (or 0.6), you can declare VERSION 0.5 to continue to use your Earthfiles.
.env file is no longer used for ARG or secrets
The .env file will only be used to automatically export environment variables, which can be used to configure earthly command line flags.
As a result, values will no longer be propagated to Earthfile ARGs or RUN --secret=... commands.
Instead if you want build arguments or secrets automatically passed into earthly, they must be placed in .arg or .secret files respectively.
Note that this is a backwards incompatible change and will apply to all Earthfiles (regardless of the defined VERSION value).
Pushing no longer requires everything else to succeed
The behavior of the --push mode has changed in VERSION 0.7 and is backwards incompatible with VERSION 0.6. Previously, --push commands would only execute if all other commands had succeeded. This precondition is no longer enforced, to allow for more flexible push ordering via the new WAIT clause. To achieve the behavior of the previous --push mode, you need to wrap any pre-required commands in a WAIT clause. For example, to push an image only if tests have passed, you would do the following:
test-and-push:
WAIT
BUILD +test
END
BUILD +my-image
my-image:
...
SAVE IMAGE --push my-org/my-image:latestThis type of behavior is useful in order to have better control over the order of push operations. For example, you may want to push an image to a registry, followed by a deployment that uses the newly pushed image. Here is how this might look like:
push-and-deploy:
...
WAIT
BUILD +my-image
END
RUN --push ./deploy.sh my-org/my-image:latest
my-image:
...
SAVE IMAGE --push my-org/my-image:latestWhere ./deploy.sh is custom deployment script instructing a production environment to start using the image that was just pushed.
Promoting experimental features
This version promotes a number of features that have been previously in Experimental and Beta status. To make use of
the features in this version you need to declare VERSION 0.7 at the top of your Earthfile.
Declaring VERSION 0.7 is equivalent to
VERSION \
--check-duplicate-images \
--earthly-git-author-args \
--earthly-locally-arg \
--earthly-version-arg \
--explicit-global \
--new-platform \
--no-tar-build-output \
--save-artifact-keep-own \
--shell-out-anywhere \
--use-cache-command \
--use-chmod \
--use-copy-link \
--use-host-command \
--use-no-manifest-list \
--use-pipelines \
--use-project-secrets \
--wait-block \
0.6
For more information on the individual Earthfile feature flags see the Earthfile version-specific features page.
Changed
- The behavior of the
--pushmode has changed in a backwards incompatible manner. Previously,--pushcommands would only execute if all other commands had succeeded. This precondition is no longer enforced, allowing push commands to execute in the middle of the build now. Previously underVERSION --wait-block 0.6. ARGs declared in the base target do not automatically become global unless explicitly declared as such viaARG --global. Previously underVERSION --explicit-global 0.6.- The Cloud-based secrets model is now project-based; it is not compatible with the older global secrets model. Earthfiles which are defined as
VERSION 0.5orVERSION 0.6will continue to use the old global secrets namespace; however
the earthly command line no longer supports accessing or modifying the global secrets. A newearthly secrets migratecommand has been added to help transition the global-based secrets to the new project-based secrets. If you need to manage secrets from Earthly 0.6 without migrating to the new 0.7 secrets, please use an older Earthly binary. - All
COPYandSAVE ARTIFACToperations now use union filesystem merging for performing theCOPY. This is similar toCOPY --linkin Dockerfiles, however in Earthly it is automatically enabled for all such operations. Previously underVERSION --use-copy-link 0.6. - The platform logic has been improved to allow overriding the platform in situations where previously it was not possible. Additionally, the default platform is now the native platform of the runner, and not of the host running Earthly. This makes platforms work better in remote runner settings. Previously under
VERSION --new-platform 0.6. - Earthly will automatically shellout to determine the
$HOMEvalue when referenced #2469 - Improved error message when invalid shell variable name is configured for a secret. #2478
earthly lshas been promoted from experimental to beta status.- Setting a
VERSIONfeature flag boolean to false (or any other value) will now raise an error; previously it was syntactically valid but had no effect. SAVE ARTIFACT <path> AS LOCAL ...when used under aTRY/FINALLYcan fail to be fully transferred to the host when theTRYcommand fails (resulting in an partially transferred file); an underflow can still occur, and is now detected and will not export the partial file. 2452- The
--keep-ownflag forSAVE ARTIFACTis now applied by default; note thatCOPY --keep-ownmust still be used in order to keep ownership - Values from the
.envfile will no longer be propigated to EarthfileARGs orRUN --secret=...commands; instead values must be placed in.argor.secretfiles respectively. Note that this is a backwards incompatible change and will apply to all Earthfiles (regardless of the definedVERSIONvalue). #1736 - Some particularly obtuse syntax errors now have hints added to help clarify what the expected syntax might be. #2656
Added
- The commands
PIPELINEandTRIGGERhave been introduced for defining Earthly CI pipelines. Previously underVERSION --use-pipelines 0.6. - The clause
WAITis now generally available. TheWAITclause allows controlling of build order for operations that require it. This allows use-cases such as pushing images to a registry, followed by infrastructure changes that use the newly pushed images. Previously underVERSION --wait-block 0.6. - The command
CACHEis now generally available. TheCACHEcommand allows declaring a cache mount that can be used by anyRUNcommand in the target, and also persists in the final image of the target (contents available when used viaFROM). Previously underVERSION --use-cache-command 0.6. - The command
HOSTis now generally available. TheHOSTcommand allows declaring an/etc/hostsentry. Previously underVERSION --use-host-command 0.6. - New ARG
EARTHLY_GIT_COMMIT_AUTHOR_TIMESTAMPwill contain the author timestamp of the current git commit. #2462 - New ARGs
EARTHLY_VERSIONandEARTHLY_BUILD_SHAcontain the version of Earthly and the git sha of Earthly itself, respectively. - It is now possible to execute shell commands as part of any command that allows using variables. For example
VOLUME $(cat /volume-name.txt). Previously underVERSION --shell-out-anywhere 0.6. - Allow custom image to be used for git operations. #2027
- Earthly now checks for duplicate image names when performing image outputs. Previously under
VERSION --check-duplicate-images 0.6. SAVE IMAGE --no-manifest-listallows outputting images of a different platform than the default one, but without the manifest list. This is useful for outputting images for platforms that do not support manifest lists, such as AWS Lambda. Previously underVERSION --use-no-manifest-list 0.6.COPY --chmod <mode>allows setting the permissions of the copied files. Previously underVERSION --use-chmod 0.6.- The new ARG
EARTHLY_LOCALLYindicates whether the current target is executed in aLOCALLYcontext. Previously underVERSION --earthly-locally-arg 0.6. - The new ARGs
EARTHLY_GIT_AUTHORandEARTHLY_GIT_CO_AUTHORScontain the author and co-authors of the current git commit, respectively. Previously underVERSION --earthly-git-author-args 0.6. earthly doc [projectRef[+targetRef]]is a new subcommand in beta status. It will parse and output documentation comments on targets.- Ability to store docker registry credentials in cloud secrets and corresponding
earthly registry setup|list|removecommands; credentials can be associated with either your user or project. - New satellite commands for enabling auto-upgrades and forcing a manual upgrade.
Fixed
- Support for saving files larger than 64kB on failure within a
TRY/FINALLYblock. #2452 - Fixed race condition where
SAVE IMAGEorSAVE ARTIFACT AS LOCALcommands were not always performed when contained in a target that was referenced by both aFROM(orCOPY) and aBUILDcommand within the context of aWAIT/ENDblock. #2237 WORKDIRis lost when--use-copy-linkfeature is enabled withGIT CLONEorCOPY --keep-owncommands. Note that--use-copy-linkis enabled by default inVERSION 0.7. #2544- The
CACHEcommand did not work when used inside aWITH DOCKERblock. #2549 - The
--platformargument is no longer passed to docker or podman, which caused podman to always pull the buildkit image even when it already existed locally. #2511, #2566 - Fixed missing inline cache export; note that inline cache exports do not work when used within a
WAIT/ENDblock, this is a known current limitation. #2178 - Indentation in the base Earthfile target would cause a panic (when no other targets existed); now a syntax error is returned. #2603