opendatahub-io · shalberd · Jul 6, 2023 · Jul 6, 2023 · Jul 23, 2023 · HumairAK
diff --git a/data-science-pipelines-operator/base/params.env b/data-science-pipelines-operator/base/params.env
@@ -6,7 +6,7 @@ IMAGES_CACHE=registry.access.redhat.com/ubi8/ubi-minimal
 IMAGES_MOVERESULTSIMAGE=registry.access.redhat.com/ubi8/ubi-micro
 IMAGES_MARIADB=registry.redhat.io/rhel8/mariadb-103:1-188
 IMAGES_DSPO=quay.io/opendatahub/data-science-pipelines-operator:v1.0.0
-IMAGES_OAUTHPROXY=registry.redhat.io/openshift4/ose-oauth-proxy:v4.12.0
+IMAGES_OAUTHPROXY=registry.redhat.io/openshift4/ose-oauth-proxy@sha256:ab112105ac37352a2a4916a39d6736f5db6ab4c29bad4467de8d613e80e9bb33
 IMAGES_MLMDENVOY=quay.io/opendatahub/ds-pipelines-metadata-envoy:v1.0.0
 IMAGES_MLMDGRPC=quay.io/opendatahub/ds-pipelines-metadata-grpc:v1.0.0
 IMAGES_MLMDWRITER=quay.io/opendatahub/ds-pipelines-metadata-writer:v1.0.0
diff --git a/model-mesh/odh-modelmesh-controller/internal/base/deployment.yaml.tmpl b/model-mesh/odh-modelmesh-controller/internal/base/deployment.yaml.tmpl
@@ -136,7 +136,7 @@ spec:
             - '--openshift-delegate-urls={"/": {"namespace": "{{.AuthNamespace}}", "resource": "services", "verb": "get"}}'
             - '--openshift-sar={"namespace": "{{.AuthNamespace}}", "resource": "services", "verb": "get"}'
             - --skip-auth-regex='(^/metrics|^/apis/v1beta1/healthz)'
-          image: registry.redhat.io/openshift4/ose-oauth-proxy@sha256:4bef31eb993feb6f1096b51b4876c65a6fb1f4401fee97fa4f4542b6b7c9bc46
+          image: registry.redhat.io/openshift4/ose-oauth-proxy@sha256:ab112105ac37352a2a4916a39d6736f5db6ab4c29bad4467de8d613e80e9bb33
           ports:
             - containerPort: 8443
               name: https

diff --git a/modelmesh-monitoring/base/prometheus/odh-prometheus.yaml b/modelmesh-monitoring/base/prometheus/odh-prometheus.yaml
@@ -19,7 +19,7 @@ spec:
         - '--openshift-sar={"namespace": "$(DEPLOYMENT_NAMESPACE)", "resource": "services", "verb": "get"}' 
         - '--openshift-delegate-urls={"/": {"namespace": "$(DEPLOYMENT_NAMESPACE)", "resource": "services", "verb": "get"}}' 
         - '-skip-auth-regex=^/metrics'
-      image: 'registry.redhat.io/openshift4/ose-oauth-proxy@sha256:4bef31eb993feb6f1096b51b4876c65a6fb1f4401fee97fa4f4542b6b7c9bc46'
+      image: 'registry.redhat.io/openshift4/ose-oauth-proxy@sha256:ab112105ac37352a2a4916a39d6736f5db6ab4c29bad4467de8d613e80e9bb33'
       imagePullPolicy: Always
       env:
         - name: DEPLOYMENT_NAMESPACE

diff --git a/odh-dashboard/base/kustomization.yaml b/odh-dashboard/base/kustomization.yaml
@@ -28,4 +28,4 @@ images:
   newTag: v2.12.0
 - name: oauth-proxy
   newName: registry.redhat.io/openshift4/ose-oauth-proxy
-  newTag: v4.8
+  digest: sha256:ab112105ac37352a2a4916a39d6736f5db6ab4c29bad4467de8d613e80e9bb33
diff --git a/odh-notebook-controller/odh-notebook-controller/manager/manager.yaml b/odh-notebook-controller/odh-notebook-controller/manager/manager.yaml
@@ -25,7 +25,7 @@ spec:
           imagePullPolicy: Always
           command:
             - /manager
-          args: ["--oauth-proxy-image", "registry.redhat.io/openshift4/ose-oauth-proxy:v4.10"]
+          args: ["--oauth-proxy-image", "registry.redhat.io/openshift4/ose-oauth-proxy@sha256:ab112105ac37352a2a4916a39d6736f5db6ab4c29bad4467de8d613e80e9bb33"]
           securityContext:
             allowPrivilegeEscalation: false
           ports:

diff --git a/tests/resources/codeflare-stack/custom-nb-small.yaml b/tests/resources/codeflare-stack/custom-nb-small.yaml
@@ -107,7 +107,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.redhat.io/openshift4/ose-oauth-proxy:v4.10
+        image: registry.redhat.io/openshift4/ose-oauth-proxy@sha256:ab112105ac37352a2a4916a39d6736f5db6ab4c29bad4467de8d613e80e9bb33
         imagePullPolicy: Always
         livenessProbe:
           failureThreshold: 3