Skip to content

AWS ECR manifest not found on inspection #30

Closed
docker/actions-toolkit
#1016
Closed
AWS ECR manifest not found on inspection#30
docker/actions-toolkit
#1016
Labels
status/needs-investigation
@crazy-max

Description

@crazy-max
crazy-max
opened on Nov 15, 2025

When using imagetools inspect right after the image has been built, sometimes the manifest cannot be found: https://github.com/docker/github-builder-experimental/actions/runs/19393242225/job/55489688577#step:12:70

Upload to transparency log: enabled
Using Sigstore signing endpoint: https://fulcio.sigstore.dev/
Error: Signing BuildKit attestation manifests failed: ERROR: httpReadSeeker: failed open: content at https://public.ecr.aws/v2/q3b5f1u4/test-docker-action/manifests/sha256:76bc7984bdcf00ef5af953b7cb3de57ef39101cc091f4913c738b16cfbd26e53 not found: not found

It seems to happen only with AWS ECR so maybe something racy on their registry.

I will add more debug in our actions-toolkit: https://github.com/docker/actions-toolkit/blob/bb9028cd44bba32a70273d625d310a8deaa37072/src/buildx/imagetools.ts#L65

Metadata

Metadata

Assignees

No one assigned

    Labels

    status/needs-investigation

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions