Page MenuHomePhabricator
Create Task
Maniphest T393437

Provide nodejs22 base images for production
Closed, ResolvedPublic
Actions

Description

Previously: T362681: Provide nodejs20 base images for production

Per upstream's release chart, NodeJS 20 is now in maintenance mode; NodeJS 22 is LTS until October.

Would it be possible to provide a nodejs22 production base image?

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
Provide Node 22 image, using thirdparty/node22, based on Trixieoperations/docker-images/production-imagesmaster+11 -0
Add repository sync definition for node 22operations/puppetproduction+11 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

Jdforrester-WMF created this task.May 6 2025, 8:12 AM
KartikMistry mentioned this in T394982: Migrate cxserver in production to node22.May 22 2025, 6:18 AM
akosiaris subscribed.May 30 2025, 9:18 AM
KartikMistry added a comment.Jul 1 2025, 6:22 AM

Any updates on this? Node 20 is no longer LTS.

Clement_Goubert added subscribers: MoritzMuehlenhoff, Clement_Goubert.Jul 1 2025, 11:44 AM

Tagging @MoritzMuehlenhoff as he's listed as maintainer for the nodejs20 image, and this requires adding the third party nodejs22 packages.

Jdforrester-WMF added a comment.Jul 2 2025, 11:56 AM

It'd be great if we could do Node 24 at the same time.

MoritzMuehlenhoff added a comment.Jul 15 2025, 11:13 AM

I'm probably listed there because I have been handling various security update updates of that image, but I'm hardly the maintainer for these images. This should rather be driven by some Product team which actually uses nodejs-based services (and SRE can handles merges, updates etc).

Jdforrester-WMF added a comment.Aug 21 2025, 8:34 PM
In T393437#11004018, @MoritzMuehlenhoff wrote:

I'm probably listed there because I have been handling various security update updates of that image, but I'm hardly the maintainer for these images. This should rather be driven by some Product team which actually uses nodejs-based services (and SRE can handles merges, updates etc).

I'd be happy to take this on. However, given that we have local apt builds for the packages, is it possible for any non-SRE to do this work?

elukey subscribed.Aug 28 2025, 1:11 PM

@Jdforrester-WMF @KartikMistry we usually try to use the nodejs version shipped with a certain Debian version, for example node 20 is shipped with Bookworm (that is the base image for the nodejs20 one). As far as I can see Trixie ships with node20 as well, so importing new versions would require to package/import from elsewhere node22 or node24 (and npm), something that we'd rather not do because of the added complexity. As far as I can see node 20 is marked in maintenance mode (critical security bugs and features only) until April 2026, so it should be good for our use cases unless something like LTS is needed. Is there a specific use case to jump to node 22/24 that could warrant importing/building custom nodejs packages?

gerritbot added a comment.Aug 28 2025, 1:16 PM

Change #1182835 had a related patch set uploaded (by Muehlenhoff; author: Muehlenhoff):

[operations/puppet@production] Add repository sync definition for node 22

https://gerrit.wikimedia.org/r/1182835

gerritbot added a project: Patch-For-Review.Aug 28 2025, 1:16 PM
MoritzMuehlenhoff added a comment.Aug 28 2025, 1:18 PM

For the node images we also use the vendor debs, I made a patch at https://gerrit.wikimedia.org/r/c/operations/puppet/+/1182835I'd be happy to take this on.

However, given that we have local apt builds for the packages, is it possible for any non-SRE to do this work?

@Jdforrester-WMF With the update definition above it's mostly a matter of re-importing current binaries after Node security releases. I can take care of this, I'm keeping an eye on these anyway, the issue is rather this needs some involvement by someone who actually uses these images, so that we notice errors etc.

gerritbot added a comment.Aug 28 2025, 1:26 PM

Change #1182837 had a related patch set uploaded (by Jforrester; author: Jforrester):

[operations/docker-images/production-images@master] Provide Node 22 image, using thirdparty/node22

https://gerrit.wikimedia.org/r/1182837

gerritbot added a comment.Aug 29 2025, 12:08 PM

Change #1182835 merged by Muehlenhoff:

[operations/puppet@production] Add repository sync definition for node 22

https://gerrit.wikimedia.org/r/1182835

MoritzMuehlenhoff added a comment.Aug 29 2025, 12:30 PM

@Jdforrester-WMF: I've imported the new nodejs deb to the thirdparty/node22 and updated r1182837 to reflect the new apt source base base image. Could you also quickly doublecheck, then'd go ahead and merge and we'll have the new image available on Monday after the weekly rebuild happening Monday night.

Jdforrester-WMF added a comment.Aug 29 2025, 3:27 PM
In T393437#11131699, @MoritzMuehlenhoff wrote:

@Jdforrester-WMF: I've imported the new nodejs deb to the thirdparty/node22 and updated r1182837 to reflect the new apt source base base image. Could you also quickly doublecheck, then'd go ahead and merge and we'll have the new image available on Monday after the weekly rebuild happening Monday night.

Yup, all good; it needed a minor tweak but now builds successfully.

gerritbot added a comment.Aug 29 2025, 3:30 PM

Change #1182837 merged by Muehlenhoff:

[operations/docker-images/production-images@master] Provide Node 22 image, using thirdparty/node22, based on Trixie

https://gerrit.wikimedia.org/r/1182837

MoritzMuehlenhoff added a comment.Aug 29 2025, 3:30 PM
In T393437#11132381, @Jdforrester-WMF wrote:
In T393437#11131699, @MoritzMuehlenhoff wrote:

@Jdforrester-WMF: I've imported the new nodejs deb to the thirdparty/node22 and updated r1182837 to reflect the new apt source base base image. Could you also quickly doublecheck, then'd go ahead and merge and we'll have the new image available on Monday after the weekly rebuild happening Monday night.

Yup, all good; it needed a minor tweak but now builds successfully.

Excellent, merged.

Maintenance_bot removed a project: Patch-For-Review.Aug 29 2025, 3:31 PM
Jdforrester-WMF closed this task as Resolved.Aug 29 2025, 3:42 PM
Jdforrester-WMF claimed this task.

Many thanks!

KartikMistry added a comment.Aug 30 2025, 6:21 AM

Thanks a lot, @Jdforrester-WMF and @MoritzMuehlenhoff

KartikMistry mentioned this in T393434: Migrate node-based services in production to node22.Aug 30 2025, 6:23 AM
gerritbot added a comment.Oct 9 2025, 2:50 PM

Change #1194968 had a related patch set uploaded (by Jgiannelos; author: Jgiannelos):

[mediawiki/services/wikifeeds@master] Bump base image to node 22

https://gerrit.wikimedia.org/r/1194968

gerritbot added a project: Patch-For-Review.Oct 9 2025, 2:50 PM

Change #1194966 had a related patch set uploaded (by Jgiannelos; author: Jgiannelos):

[mediawiki/services/mobileapps@master] Bump base image to node 22

https://gerrit.wikimedia.org/r/1194966

gerritbot added a comment.Oct 9 2025, 2:51 PM

Change #1194965 had a related patch set uploaded (by Jgiannelos; author: Jgiannelos):

[mediawiki/services/chromium-render@master] Bump base image to node 22

https://gerrit.wikimedia.org/r/1194965

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits