Update codegen image version

[ffjlabo]

What this PR does / why we need it:

Update codegen image version on gen/code

Which issue(s) this PR fixes:

Part of #4874
Related to #4968

Does this PR introduce a user-facing change?:

• How are users affected by this change:
• Is this breaking change:
• How to migrate (if breaking change):

[ffjlabo]

gen/code failed 😇 I will investigate it.
https://github.com/pipe-cd/pipecd/actions/runs/9492831530/job/26160595802?pr=4970

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 29.33%. Comparing base (462b842) to head (b06e221).

❗ Current head b06e221 differs from pull request most recent head f609eae

Please upload reports for the commit f609eae to get more accurate results.

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #4970      +/-   ##
==========================================
+ Coverage   29.32%   29.33%   +0.01%     
==========================================
  Files         323      323              
  Lines       40984    40984              
==========================================
+ Hits        12017    12024       +7     
+ Misses      28005    27999       -6     
+ Partials      962      961       -1     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[Warashi]

How about specifying the image with sha256 hash, as specified in the PR's base commit?

[ffjlabo]

I see.
Is the sha256 hash better than specifying version?
I don't have a strong opinion, but I felt redundant hash with version comment like the base commit.

[Warashi]

The image specified with the tag can be overwritten, such as the git tag.
Conversely, the sha256 hash is immutable, such as the git commit hash.
So, specifying with the sha256 hash is more reproducible.

[ffjlabo]

I got your point! Thank you! I'll fix it.

[khanhtc1202]

@ffjlabo You have to update this line in order to make the CI passed
https://github.com/pipe-cd/pipecd/blob/master/.github/workflows/gen.yaml#L14

[ffjlabo]

oops sorry 🙏

[ffjlabo]

Workflow still failed 🤔
https://github.com/pipe-cd/pipecd/actions/runs/9492993824

docker://ghcr.io/pipe-cd/codegen@sha256:277a911717e5bd33aca7b38f05dd8ab4a047ba5038a81f9b43d816a5a921fe84 is not allowed to be used in pipe-cd/pipecd. Actions in this workflow must be: within a repository that belongs to your Enterprise account or matching the following: actions/cache@v2, actions/setup-go@v2, Azure/setup-helm@v1, actions/setup-node@v3, peaceiris/actions-hugo@c03b5dbed22245418539b65eb9a3b1d5fdd9a0a6, softprops/action-gh-release@1e07f4398721186383de40550babbdf2b84acfc5, actions/labeler@v4, reviewdog/action-golangci-lint@f3dc5fadcaff5d8da3574b129a58db433171b1a8, actions/checkout@v3, docker/login-action@49ed152c8eca782a232dede0303416e8f356c37b, actions/setup-go@v3, contributor-assistant/github-action@b3bbab0a75fa27270069933cec6f369c0b373b4e, pipe-cd/actions-gh-release@v2.4.0, github/codeql-action/analyze@v2, github/codeql-action/autobuild@v2, github/codeql-action/init@v2, codecov/codecov-action@v3, docker/setup-qemu-action@8b122486cedac8393e77aa9734c3528886e4a1a8, docker...

docker://ghcr.io/pipe-cd/codegen@sha256:277a911717e5bd33aca7b38f05dd8ab4a047ba5038a81f9b43d816a5a921fe84 is not allowed to be used in pipe-cd/pipecd. Actions in this workflow must be: within a repository that belongs to your Enterprise account or matching the following

Maybe need to fix the actions setting for the repo

[ffjlabo]

I tried to add the docker://ghcr.io/pipe-cd/codegen@sha256:277a911717e5bd33aca7b38f05dd8ab4a047ba5038a81f9b43d816a5a921fe84 to the Actions permissions in the setting.

So lets recheck.

[ffjlabo]

CI failed because there is the diff in pkg/app/server/service/webservice/service.pb.auth.go.

https://github.com/pipe-cd/pipecd/actions/runs/9493373712/job/26161960073?pr=4970

HEAD detached at pull/4970/merge
Changes not staged for commit:
  (use "git add <file>..." to update what will be committed)
  (use "git restore <file>..." to discard changes in working directory)
	modified:   pkg/app/server/service/webservice/service.pb.auth.go

Also encountered the problem on my local machine using the image 🤔

[khanhtc1202]

So with the new codegen image, the generated auth file still not the same as last time succeed 🤔 Which diff is generated? 👀

[ffjlabo]

@khanhtc1202
This is the diff. Some methods disappear 🤔

[khanhtc1202]

So this issue remained 🥹
#4963

[ffjlabo]

CI gen passed!
https://github.com/pipe-cd/pipecd/actions/runs/9509753883/job/26213180311?pr=4970

[khanhtc1202]

Do we still need this?

[ffjlabo]

Sorry, I forgot to remove this.
removed b06e221

[Warashi]

This step is for debugging?
We can add this on demand, so we don't have to include this step in the usual run.

[Warashi]

oops, you already removed this. thank you.

[Warashi]

Thank you!

[khanhtc1202]

Here you go 👍