use wolfi packages, use wolfi-dev/sdk image

Signed-off-by: Jason Hall <jason@chainguard.dev>

.github/workflows/go.yml

@@ -23,4 +23,4 @@ jobs:
       - uses: ./.github/actions/release-variant
         with:
           variant: go
-          archs: amd64,aarch64,armv7
+          archs: amd64,arm64

.github/workflows/js.yml

@@ -23,4 +23,4 @@ jobs:
       - uses: ./.github/actions/release-variant
         with:
           variant: js
-          archs: amd64,aarch64,armv7
+          archs: amd64,arm64

.github/workflows/py.yml

@@ -23,4 +23,4 @@ jobs:
       - uses: ./.github/actions/release-variant
         with:
           variant: py
-          archs: amd64,aarch64,armv7
+          archs: amd64,arm64

.github/workflows/ruby.yml

@@ -23,4 +23,4 @@ jobs:
       - uses: ./.github/actions/release-variant
         with:
           variant: ruby
-          archs: amd64,aarch64,armv7
+          archs: amd64,arm64

.github/workflows/rust.yml

@@ -23,4 +23,4 @@ jobs:
       - uses: ./.github/actions/release-variant
         with:
           variant: rust
-          archs: amd64,aarch64,armv7
+          archs: amd64,arm64

README.md

@@ -43,7 +43,7 @@ Requirements:
 - [`docker`](https://docs.docker.com/get-docker/)
 - [`cosign`](https://docs.sigstore.dev/cosign/installation/)
 
-Note: these steps should also work without `docker` on an apk-based Linux distribution such as [Alpine](https://www.alpinelinux.org/).
+Note: these steps should also work without `docker`, but you may need to install [bubblewrap](https://github.com/containers/bubblewrap) to run Melange builds.
 
 ### Change directory
 
@@ -75,20 +75,20 @@ Build an apk for all architectures using melange:
 ```
 docker run --rm --privileged -v "${PWD}":/work  \
     --entrypoint=melange --workdir=/work \
-    cgr.dev/chainguard/sdk build melange.yaml \
-    --arch amd64,aarch64,armv7 \
+    ghcr.io/wolfi-dev/sdk build melange.yaml \
+    --arch amd64,arm64 \
     --signing-key melange.rsa
 ```
 
 To debug the above:
 ```
 docker run --rm --privileged -it -v "${PWD}":/work \
     --entrypoint sh \
-    cgr.dev/chainguard/sdk
+    ghcr.io/wolfi-dev/sdk
 
 # Build apks (use just --arch amd64 to isolate issue)
 melange build melange.yaml \
-    --arch amd64,aarch64,armv7 \
+    --arch amd64,arm64 \
     --signing-key melange.rsa
 
 # Install an apk
@@ -111,7 +111,7 @@ REF="ghcr.io/${GITHUB_USERNAME}/hello-melange-apko/$(basename "${PWD}")"
 docker run --rm -v "${PWD}":/work \
     --entrypoint=apko --workdir=/work ghcr.io/wolfi-dev/sdk build --debug apko.yaml \
     "${REF}" output.tar -k melange.rsa.pub \
-    --arch amd64,aarch64,armv7
+    --arch amd64,arm64
 ```
 
 If you do not wish to push the image, you could load it directly:
@@ -131,7 +131,7 @@ docker run --rm -it -v "${PWD}":/work \
     --workdir=/work ghcr.io/wolfi-dev/sdk
 
 # Build image (use just --arch amd64 to isolate issue)
-apko build --debug apko.yaml "${REF}" output.tar -k melange.rsa.pub --arch amd64,aarch64,armv7
+apko build --debug apko.yaml "${REF}" output.tar -k melange.rsa.pub --arch amd64,arm64
 ```
 
 ## Push image with apko
@@ -155,7 +155,7 @@ docker run --rm -v "${PWD}":/work \
             apko login ghcr.io -u "${GITHUB_USERNAME}" --password-stdin && \
             apko publish --debug apko.yaml \
                 "${REF}" -k melange.rsa.pub \
-                --arch amd64,aarch64,armv7'
+                --arch amd64,arm64'
 ```
 
 ## Sign image with cosign

go/apko.yaml

@@ -1,9 +1,11 @@
 contents:
   repositories:
-    - https://dl-cdn.alpinelinux.org/alpine/edge/main
+    - https://packages.wolfi.dev/os
     - /work/packages
+  keyring:
+    - https://packages.wolfi.dev/os/wolfi-signing.rsa.pub
   packages:
-    - alpine-baselayout-data
+    - wolfi-baselayout
     - hello-server
 accounts:
   groups:

go/melange.yaml

@@ -12,10 +12,11 @@ package:
 environment:
   contents:
     repositories:
-      - https://dl-cdn.alpinelinux.org/alpine/edge/main
-      - https://dl-cdn.alpinelinux.org/alpine/edge/community
+      - https://packages.wolfi.dev/os
+    keyring:
+      - https://packages.wolfi.dev/os/wolfi-signing.rsa.pub
     packages:
-      - alpine-baselayout-data
+      - wolfi-baselayout
       - ca-certificates-bundle
       - busybox
       - go

js/apko.yaml

@@ -1,9 +1,11 @@
 contents:
   repositories:
-    - https://dl-cdn.alpinelinux.org/alpine/edge/main
+    - https://packages.wolfi.dev/os
     - /work/packages
+  keyring:
+    - https://packages.wolfi.dev/os/wolfi-signing.rsa.pub
   packages:
-    - alpine-baselayout-data
+    - wolfi-baselayout
     - hello-server
 accounts:
   groups:

js/melange.yaml

@@ -15,10 +15,11 @@ package:
 environment:
   contents:
     repositories:
-      - https://dl-cdn.alpinelinux.org/alpine/edge/main
-      - https://dl-cdn.alpinelinux.org/alpine/edge/community
+      - https://packages.wolfi.dev/os
+    keyring:
+      - https://packages.wolfi.dev/os/wolfi-signing.rsa.pub
     packages:
-      - alpine-baselayout-data
+      - wolfi-baselayout
       - ca-certificates-bundle
       - busybox
       - nodejs

py/apko.yaml

@@ -1,9 +1,11 @@
 contents:
   repositories:
-    - https://dl-cdn.alpinelinux.org/alpine/edge/main
+    - https://packages.wolfi.dev/os
     - /work/packages
+  keyring:
+    - https://packages.wolfi.dev/os/wolfi-signing.rsa.pub
   packages:
-    - alpine-baselayout-data
+    - wolfi-baselayout
     - hello-server
 accounts:
   groups:

py/melange.yaml

@@ -15,10 +15,11 @@ package:
 environment:
   contents:
     repositories:
-      - https://dl-cdn.alpinelinux.org/alpine/edge/main
-      - https://dl-cdn.alpinelinux.org/alpine/edge/community
+      - https://packages.wolfi.dev/os
+    keyring:
+      - https://packages.wolfi.dev/os/wolfi-signing.rsa.pub
     packages:
-      - alpine-baselayout-data
+      - wolfi-baselayout
       - ca-certificates-bundle
       - busybox
       - gcc

ruby/apko.yaml

@@ -1,9 +1,11 @@
 contents:
   repositories:
-    - https://dl-cdn.alpinelinux.org/alpine/edge/main
+    - https://packages.wolfi.dev/os
     - /work/packages
+  keyring:
+    - https://packages.wolfi.dev/os/wolfi-signing.rsa.pub
   packages:
-    - alpine-baselayout-data
+    - wofli-baselayout
     - hello-server
 accounts:
   groups:

ruby/melange.yaml

@@ -15,10 +15,11 @@ package:
 environment:
   contents:
     repositories:
-      - https://dl-cdn.alpinelinux.org/alpine/edge/main
-      - https://dl-cdn.alpinelinux.org/alpine/edge/community
+      - https://packages.wolfi.dev/os
+    keyring:
+      - https://packages.wolfi.dev/os/wolfi-signing.rsa.pub
     packages:
-      - alpine-baselayout-data
+      - wolfi-baselayout
       - ca-certificates-bundle
       - busybox
       - make

rust/apko.yaml

@@ -1,9 +1,11 @@
 contents:
   repositories:
-    - https://dl-cdn.alpinelinux.org/alpine/edge/main
+    - https://packages.wolfi.dev/os
     - /work/packages
+  keyring:
+    - https://packages.wolfi.dev/os/wolfi-signing.rsa.pub
   packages:
-    - alpine-baselayout-data
+    - wolfi-baselayout
     - hello-server
 accounts:
   groups:

rust/melange.yaml

@@ -12,10 +12,11 @@ package:
 environment:
   contents:
     repositories:
-      - https://dl-cdn.alpinelinux.org/alpine/edge/main
-      - https://dl-cdn.alpinelinux.org/alpine/edge/community
+      - https://packages.wolfi.dev/os
+    keyring:
+      - https://packages.wolfi.dev/os/wolfi-signing.rsa.pub
     packages:
-      - alpine-baselayout-data
+      - wolfi-baselayout
       - ca-certificates-bundle
       - busybox
       - cargo