Added Ansible; upgraded Python to 3.13, Go to 1.23

Author: erhhung

.gitignore

@@ -1,4 +1,5 @@
 .DS_Store
 NOTES
 *.log
-slim.report.json
+slim.*.json
+dive.*.json

Dockerfile

@@ -14,16 +14,16 @@ echo "::group::Install common build tools"
 echo "::endgroup::"
 EOT
 
-# build Python 3.12: https://www.build-python-from-source.com/
+# build Python 3.13: https://www.build-python-from-source.com/
 RUN <<'EOT'
 set -e
-echo "::group::Build Python 3.12"
+echo "::group::Build Python 3.13"
 ( set -uxo pipefail
 
   cd /tmp
   dnf install -y  openssl-devel bzip2-devel xz-devel libffi-devel \
     libuuid-devel gdbm-devel readline-devel tk-devel sqlite-devel
-  VER="3.12"
+  VER="3.13"
   FTP="https://www.python.org/ftp/python"
   # determine the latest patch version
   ver=$(curl -s $FTP/ | sed -En 's/^.+href="('${VER/./\\.}'\..+)\/".+$/\1/p' | sort -Vr | head -1)
@@ -199,7 +199,7 @@ FROM public.ecr.aws/amazonlinux/amazonlinux:2023 AS final
 # =======================================================
 
 #LABEL name="al2023-devops"
-#LABEL description="Amazon Linux 2023 with Python 3.12, Go 1.22, Node.js 22, AWS CLI, Mountpoint for S3, CDK, CDK8s, Docker, Kubectl, Krew, Helm, Argo CD, and utilities like jq, jo, yq, jsonnet, and Just"
+#LABEL description="Amazon Linux 2023 with Python 3.13, Go 1.23, Node.js 22, AWS CLI, Mountpoint for S3, CDK, CDK8s, Docker, Kubectl, Krew, Helm, Argo CD, and utilities like jq, jo, yq, jsonnet, and Just"
 #LABEL maintainer="[email protected]"
 
 ENV TERM="xterm-256color"
@@ -229,8 +229,8 @@ echo "::group::Install Linux utilities"
   # install common utilities (procps provides "free" command)
   # perl-IPC-Run and perl-Time-HiRes are required by moreutils
   dnf install -y git wget tar xz bzip2 gzip unzip man bash-completion \
-    which findutils pwgen gettext procps openssl nmap tmux vim bc \
-    glibc-locale-source glibc-langpack-en perl-IPC-Run perl-Time-HiRes
+    which findutils pwgen gettext procps sshpass openssl nmap tmux vim \
+    bc glibc-locale-source glibc-langpack-en perl-IPC-Run perl-Time-HiRes
   dnf clean all
   rm -rf /var/log/* /var/cache/dnf
   alternatives --install /usr/local/bin/vi vi /usr/bin/vim 1
@@ -308,19 +308,19 @@ echo "::group::Install Python tools"
   # /usr/local/poetry/bin is already in $PATH via Dockerfile ENV command
   poetry -V
 
-  # install pipx, Pygments and ansitable
-  pip3 install --no-cache-dir --root-user-action=ignore pipx pygments colored ansitable
+  # install pipx, Pygments, ansitable, and Ansible
+  pip3 install --no-cache-dir --root-user-action=ignore pipx pygments colored ansitable ansible
   pipx ensurepath --global && pipx --version
   rm -rf /root/.cache
   pygmentize -V
 )
 echo "::endgroup::"
 EOT
 
-# install Golang 1.22
+# install Golang 1.23
 RUN <<'EOT'
 set -e
-echo "::group::Install Golang 1.22"
+echo "::group::Install Golang 1.23"
 ( set -uxo pipefail
 
   dnf install -y golang

README.md

@@ -5,8 +5,8 @@ Multi-arch (x86_64/amd64 and aarch64/arm64) Docker image based on **Amazon Linux
 ## Bundled Tools
 
 Includes the following components:
-- [Python 3.12](https://www.python.org/downloads)
-- [Go 1.22](https://go.dev/dl)
+- [Python 3.13](https://www.python.org/downloads)
+- [Go 1.23](https://go.dev/dl)
 - [Node.js 22](https://nodejs.org/en/download)
 - [Poetry](https://python-poetry.org/)
 - [AWS CLI](https://docs.aws.amazon.com/cli/latest/userguide)
@@ -28,6 +28,7 @@ Includes the following components:
   - [helm-ssm](https://github.com/codacy/helm-ssm)
   - [Helmfile](https://github.com/helmfile/helmfile)
 - [Argo CD](https://argo-cd.readthedocs.io/en/stable/)
+- [Ansible](https://docs.ansible.com/)
 
 As well as the following utilities:
 - [jq](https://stedolan.github.io/jq), [jo](https://github.com/jpmens/jo), and [yq](https://mikefarah.gitbook.io/yq)
@@ -41,7 +42,7 @@ As well as the following utilities:
 
 ## Prebuilt Images
 
-Size is approximately 3 GB.
+Size is approximately 3 GB _(too chubby, I know — see the [To-Do](#to-do) section)._
 
 Images are available in the following repositories:
 - Docker Hub: [`docker.io/erhhung/al2023-devops`](https://hub.docker.com/repository/docker/erhhung/al2023-devops)
@@ -51,5 +52,4 @@ Version information about the installed components can be found inside the Docke
 
 ## To-Do
 
-The current "All-in-One" image is getting bloated, so there's a need to create a slimmed-down image for
-CI/CD pipelines only, and a separate image for launching ad-hoc containers for manual administration.
+The current "All-in-One" image is getting too bloated, so there's a need to create specialized versions, like a slimmed-down image just for CI/CD pipelines, and a separate image for launching ad-hoc containers for manual administration and debugging. It's also unlikely that a single CI/CD pipeline stage would need all language environments, as Python and Go are especially chubby.

config/.bash_profile

@@ -11,6 +11,7 @@ alias l='less'
 alias  k='kubectl'
 alias kg='kubectl-grep'
 alias ar='kubectl-argo-rollouts'
+alias ap='ansible-playbook'
 alias  a='argocd'
 alias  h='helm'
 

scripts/versions.sh

@@ -32,9 +32,10 @@ gclone() {
 
 # <repository>
 grelease() {
-  curl -Is $1/releases/latest | sed -En 's/^location:.+\/tag\/(.+)\r$/\1/p'
+  curl -Is "$1/releases/latest" | sed -En 's/^location:.+\/tag\/(.+)\r$/\1/p'
 }
 
+setver ansible $(v=(`ansible --version | head -1`); echo ${v[-1]%\]})
 setver argocd $(v=(`argocd version --client --short`); v=${v[-1]#v}; echo ${v%+*})
 setver aws $(v=(`aws --version`); echo ${v[0]#*/})
 setver bash ${BASH_VERSION/%\(*/}
@@ -84,7 +85,8 @@ setver poetry $(v=(`poetry --version`); echo ${v[2]%)})
 setver pwgen $(dnfver pwgen)
 setver pygments $(v=(`pygmentize -V`); echo ${v[2]%,})
 setver python $(v=(`python --version`); echo ${v[-1]})
-setver sops $(v=(`sops --version | head -1`); echo ${v[1]})
+setver sops $(v=(`sops --version | head -1`); echo ${v[-1]})
+setver sshpass $(v=(`sshpass -V | head -1`); echo ${v[-1]})
 setver tar $(v=(`tar --version | head -1`); echo ${v[-1]})
 setver tini $(v=(`tini --version`); echo ${v[2]})
 setver tmux $(v=(`tmux -V`); echo ${v[-1]})