Skip to content

AIGEN Use BuildKit cache mounts for package manager caches #1087

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
mbouaziz wants to merge 8 commits into
base: main
Choose a base branch
from
Draft

AIGEN Use BuildKit cache mounts for package manager caches #1087

mbouaziz wants to merge 8 commits into from
+49 −39

Conversation

@mbouaziz
Copy link
Contributor

@mbouaziz mbouaziz commented Feb 12, 2026

Summary

  • Replace explicit cache cleanup (apt-get clean, npm cache clean, pip cache purge, rm -rf ~/.gradle) with BuildKit --mount=type=cache
  • Cache volumes persist between builds for faster rebuilds but are never included in image layers
  • Add --no-install-recommends to all apt-get install calls
  • Add ca-certificates explicitly for HTTPS apt repos (needed with --no-install-recommends)
  • Add npm explicitly alongside nodejs (recommended dep, skipped with --no-install-recommends)

Files changed

  • skiplang/Dockerfile — apt cache mounts
  • sql/Dockerfile — apt, npm, SDKMAN cache mounts
  • Dockerfile — apt, npm, pip cache mounts
  • sql/server/core/Dockerfile — Gradle cache mount
  • sql/server/dev/Dockerfile — Gradle cache mount
  • skipruntime-ts/tests/native_addon/Dockerfile — apt, npm cache mounts
  • skipruntime-ts/tests/native_addon_unreleased/Dockerfile — apt, npm cache mounts

Measured impact (skiplang/Dockerfile base stage)

Method Size
No cleanup (registry) 2.03 GB
Explicit apt-get clean 1.14 GB
BuildKit cache mounts 636 MB

Notes

  • --mount=type=cache requires BuildKit (default since Docker 23.0, Jan 2023)
  • release_docker.sh already uses docker buildx build (full BuildKit)
  • --no-cache flag in build scripts disables layer caching but does NOT affect cache mount volumes
  • sharing=locked prevents cache corruption during parallel builds

Test plan

  • docker build --no-cache -f skiplang/Dockerfile --target base . — builds successfully
  • clang --version — LLVM 20.1.8 works
  • Image contains no apt cache (0 files in /var/lib/apt/lists/)
  • CI passes

🤖 Generated with Claude Code

mbouaziz and others added 6 commits February 12, 2026 17:09
@mbouaziz @claude
skiplang/Dockerfile: use BuildKit cache mounts for apt
cd6ad04 
Replace explicit apt cache cleanup with --mount=type=cache.
Cache volumes persist between builds for faster rebuilds
but are never included in image layers.

Also add ca-certificates explicitly since --no-install-recommends
skips it, and it's needed for HTTPS access to apt.llvm.org.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@mbouaziz @claude
sql/Dockerfile: use BuildKit cache mounts for apt, npm, SDKMAN
172d1a0 
Replace explicit cache cleanup with --mount=type=cache for apt,
npm, and SDKMAN archives.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@mbouaziz @claude
Dockerfile: use BuildKit cache mounts for apt, npm, pip
f774a7b 
Replace explicit cache cleanup with --mount=type=cache for apt,
npm, and pip caches.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@mbouaziz @claude
sql/server: use BuildKit cache mounts for Gradle
91d154f 
Replace explicit Gradle cache cleanup with --mount=type=cache.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@mbouaziz @claude
skipruntime-ts/tests: use BuildKit cache mounts for apt, npm
e212990 
Replace explicit cache cleanup with --mount=type=cache for apt
and npm caches.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@mbouaziz @claude
skipruntime-ts/tests: remove conflicting Ubuntu npm package
6b5a854 
Nodesource's nodejs package bundles npm. Installing Ubuntu's
separate npm package alongside it causes conflicts. Remove
the explicit npm from apt-get install.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@mbouaziz mbouaziz changed the title Use BuildKit cache mounts for package manager caches AIGEN Use BuildKit cache mounts for package manager caches Feb 13, 2026
mbouaziz and others added 2 commits February 13, 2026 10:37
@mbouaziz @claude
skipruntime-ts/tests: add ca-certificates for HTTPS apt repos
d46c3df 
With --no-install-recommends, ca-certificates is not pulled in
automatically. Without it, wget can't fetch the nodesource setup
script over HTTPS, causing apt to fall back to Ubuntu's nodejs 18
which doesn't include npm.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@mbouaziz @claude
skipruntime-ts/tests: separate apt cache per architecture
3354ac1 
Use TARGETARCH in cache mount IDs to prevent cross-architecture
contamination when building for multiple platforms sequentially.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mbouaziz