ng
    	GCS bucket name
  -gcs.expect-continue-timeout duration
    	The time to wait for a server's first response headers after fully writing the request headers if the request has an Expect header. Set to 0 to send the request body immediately. (default 1s)
  -gcs.http.idle-conn-timeout duration
    	The time an idle connection remains idle before closing. (default 1m30s)
  -gcs.http.insecure-skip-verify
    	If the client connects to object storage via HTTPS and this option is enabled, the client accepts any certificate and hostname.
  -gcs.http.response-header-timeout duration
    	The amount of time the client waits for a server's response headers. (default 2m0s)
  -gcs.http.tls-ca-path string
    	Path to the Certificate Authority (CA) certificates to validate the server certificate. If not set, the host's root CA certificates are used.
  -gcs.http.tls-cert-path string
    	Path to the client certificate, which is used for authenticating with the server. This setting also requires you to configure the key path.
  -gcs.http.tls-key-path string
    	Path to the key for the client certificate. This setting also requires you to configure the client certificate.
  -gcs.http.tls-server-name string
    	Override the expected name on the server certificate.
  -gcs.max-connections-per-host int
    	Maximum number of connections per host. Set to 0 for no limit.
  -gcs.max-idle-connections int
    	Maximum number of idle (keep-alive) connections across all hosts. Set to 0 for no limit. (default 100)
  -gcs.max-idle-connections-per-host int
    	Maximum number of idle (keep-alive) connections to keep per-host. Set to 0 to use a built-in default value of 2. (default 100)
  -gcs.service-account value
    	JSON either from a Google Developers Console client_credentials.json file, or a Google Developers service account key. Needs to be valid JSON, not a filesystem path.
  -gcs.tls-handshake-timeout duration
    	Maximum time to wait for a TLS handshake. Set to 0 for no limit. (default 10s)
  -log.format string
    	Output log messages in the given format. Valid formats: [logfmt, json] (default "logfmt")
  -log.level value
    	Only log messages with the given severity or above. Valid levels: [debug, info, warn, error] (default info)
  -log_backtrace_at value
    	when logging hits line file:N, emit a stack trace
  -log_dir string
    	If non-empty, write log files in this directory
  -log_link string
    	If non-empty, add symbolic links in this directory to the log files
  -logbuflevel int
    	Buffer log messages logged at this level or lower (-1 means don't buffer; 0 means buffer INFO only; ...). Has limited applicability on non-prod platforms.
  -logtostderr
    	log to standard error instead of files
  -s3.access-key-id string
    	S3 access key ID
  -s3.bucket-lookup-type value
    	Bucket lookup style type, used to access bucket in S3-compatible service. Default is auto. Supported values are: auto, path, virtual-hosted.
  -s3.bucket-name string
    	S3 bucket name
  -s3.dualstack-enabled
    	When enabled, direct all AWS S3 requests to the dual-stack IPv4/IPv6 endpoint for the configured region. (default true)
  -s3.endpoint string
    	The S3 bucket endpoint. It could be an AWS S3 endpoint listed at https://docs.aws.amazon.com/general/latest/gr/s3.html or the address of an S3-compatible service in hostname:port format.
  -s3.expect-continue-timeout duration
    	The time to wait for a server's first response headers after fully writing the request headers if the request has an Expect header. Set to 0 to send the request body immediately. (default 1s)
  -s3.http.idle-conn-timeout duration
    	The time an idle connection remains idle before closing. (default 1m30s)
  -s3.http.insecure-skip-verify
    	If the client connects to object storage via HTTPS and this option is enabled, the client accepts any certificate and hostname.
  -s3.http.response-header-timeout duration
    	The amount of time the client waits for a server's response headers. (default 2m0s)
  -s3.http.tls-ca-path string
    	Path to the Certificate Authority (CA) certificates to validate the server certificate. If not set, the host's root CA certificates are used.
  -s3.http.tls-cert-path string
    	Path to the client certificate, which is used for authenticating with the server. This setting also requires you to configure the key path.
  -s3.http.tls-key-path string
    	Path to the key for the client certificate. This setting also requires you to configure the client certificate.
  -s3.http.tls-server-name string
    	Override the expected name on the server certificate.
  -s3.insecure
    	If enabled, use http:// for the S3 endpoint instead of https://. This could be useful in local dev/test environments while using an S3-compatible backend storage, like Minio.
  -s3.list-objects-version string
    	Use a specific version of the S3 list object API. Supported values are v1 or v2. Default is unset.
  -s3.max-connections-per-host int
    	Maximum number of connections per host. Set to 0 for no limit.
  -s3.max-idle-connections int
    	Maximum number of idle (keep-alive) connections across all hosts. Set to 0 for no limit. (default 100)
  -s3.max-idle-connections-per-host int
    	Maximum number of idle (keep-alive) connections to keep per-host. Set to 0 to use a built-in default value of 2. (default 100)
  -s3.native-aws-auth-enabled
    	If enabled, it will use the default authentication methods of the AWS SDK for go based on known environment variables and known AWS config files.
  -s3.part-size uint
    	The minimum file size in bytes used for multipart uploads. If 0, the value is optimally computed for each object.
  -s3.region string
    	S3 region. If unset, the client will issue a S3 GetBucketLocation API call to autodetect it.
  -s3.secret-access-key value
    	S3 secret access key
  -s3.send-content-md5
    	If enabled, a Content-MD5 header is sent with S3 Put Object requests. Consumes more resources to compute the MD5, but may improve compatibility with object storage services that do not support checksums.
  -s3.session-token value
    	S3 session token
  -s3.signature-version string
    	The signature version to use for authenticating against S3. Supported values are: v4, v2. (default "v4")
  -s3.sse.kms-encryption-context string
    	KMS Encryption Context used for object encryption. It expects JSON formatted string.
  -s3.sse.kms-key-id string
    	KMS Key ID used to encrypt objects in S3
  -s3.sse.type string
    	Enable AWS Server Side Encryption. Supported values: SSE-KMS, SSE-S3.
  -s3.storage-class string
    	The S3 storage class to use, not set by default. Details can be found at https://aws.amazon.com/s3/storage-classes/. Supported values are: STANDARD, REDUCED_REDUNDANCY, GLACIER, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, DEEP_ARCHIVE, OUTPOSTS, GLACIER_IR, SNOW, EXPRESS_ONEZONE
  -s3.sts-endpoint string
    	Accessing S3 resources using temporary, secure credentials provided by AWS Security Token Service.
  -s3.tls-handshake-timeout duration
    	Maximum time to wait for a TLS handshake. Set to 0 for no limit. (default 10s)
  -s3.trace.enabled
    	When enabled, low-level S3 HTTP operation information is logged at the debug level.
  -stderrthreshold value
    	logs at or above this threshold go to stderr (default 2)
  -storage-prefix string
    	Prefix for all objects stored in the backend storage. For simplicity, it may only contain digits and English alphabet letters.
  -swift.application-credential-id string
    	OpenStack Swift application credential id
  -swift.application-credential-name string
    	OpenStack Swift application credential name
  -swift.application-credential-secret value
    	OpenStack Swift application credential secret
  -swift.auth-url string
    	OpenStack Swift authentication URL
  -swift.auth-version int
    	OpenStack Swift authentication API version. 0 to autodetect.
  -swift.connect-timeout duration
    	Time after which a connection attempt is aborted. (default 10s)
  -swift.container-name string
    	Name of the OpenStack Swift container to put chunks in.
  -swift.domain-id string
    	OpenStack Swift user's domain ID.
  -swift.domain-name string
    	OpenStack Swift user's domain name.
  -swift.max-retries int
    	Max retries on requests error. (default 3)
  -swift.password value
    	OpenStack Swift API key.
  -swift.project-domain-id string
    	ID of the OpenStack Swift project's domain (v3 auth only), only needed if it differs the from user domain.
  -swift.project-domain-name string
    	Name of the OpenStack Swift project's domain (v3 auth only), only needed if it differs from the user domain.
  -swift.project-id string
    	OpenStack Swift project ID (v2,v3 auth only).
  -swift.project-name string
    	OpenStack Swift project name (v2,v3 auth only).
  -swift.region-name string
    	OpenStack Swift Region to use (v2,v3 auth only).
  -swift.request-timeout duration
    	Time after which an idle request is aborted. The timeout watchdog is reset each time some data is received, so the timeout triggers after X time no data is received on a request. (default 5s)
  -swift.user-domain-id string
    	OpenStack Swift user's domain ID.
  -swift.user-domain-name string
    	OpenStack Swift user's domain name.
  -swift.user-id string
    	OpenStack Swift user ID.
  -swift.username string
    	OpenStack Swift username.
  -tenant string
    	Tenant to process
  -v value
    	log level for V logs
  -vmodule value
    	comma-separated list of pattern=N settings for file-filtered logging
running test pipeline for subpackage grafana-mimir-mimirtool
building test workspace in: '/tmp/melange-guest-3593313026-grafana-mimir-mimirtool' with apko
2025/01/12 07:34:07 [DEBUG] GET https://apk.cgr.dev/wolfi-presubmit/f6d31f7eac5dbaf8c865cd18b028a095f66ad8ad/apk-configuration
2025/01/12 07:34:07 [DEBUG] GET https://packages.wolfi.dev/os/apk-configuration
setting apk repositories: [https://apk.cgr.dev/wolfi-presubmit/f6d31f7eac5dbaf8c865cd18b028a095f66ad8ad https://packages.wolfi.dev/os]
image configuration:
  contents:
    build repositories: []
    runtime repositories: []
    keyring:      []
    packages:     [grafana-mimir-mimirtool]

ng
    	GCS bucket name
  -gcs.expect-continue-timeout duration
    	The time to wait for a server's first response headers after fully writing the request headers if the request has an Expect header. Set to 0 to send the request body immediately. (default 1s)
  -gcs.http.idle-conn-timeout duration
    	The time an idle connection remains idle before closing. (default 1m30s)
  -gcs.http.insecure-skip-verify
    	If the client connects to object storage via HTTPS and this option is enabled, the client accepts any certificate and hostname.
  -gcs.http.response-header-timeout duration
    	The amount of time the client waits for a server's response headers. (default 2m0s)
  -gcs.http.tls-ca-path string
    	Path to the Certificate Authority (CA) certificates to validate the server certificate. If not set, the host's root CA certificates are used.
  -gcs.http.tls-cert-path string
    	Path to the client certificate, which is used for authenticating with the server. This setting also requires you to configure the key path.
  -gcs.http.tls-key-path string
    	Path to the key for the client certificate. This setting also requires you to configure the client certificate.
  -gcs.http.tls-server-name string
    	Override the expected name on the server certificate.
  -gcs.max-connections-per-host int
    	Maximum number of connections per host. Set to 0 for no limit.
  -gcs.max-idle-connections int
    	Maximum number of idle (keep-alive) connections across all hosts. Set to 0 for no limit. (default 100)
  -gcs.max-idle-connections-per-host int
    	Maximum number of idle (keep-alive) connections to keep per-host. Set to 0 to use a built-in default value of 2. (default 100)
  -gcs.service-account value
    	JSON either from a Google Developers Console client_credentials.json file, or a Google Developers service account key. Needs to be valid JSON, not a filesystem path.
  -gcs.tls-handshake-timeout duration
    	Maximum time to wait for a TLS handshake. Set to 0 for no limit. (default 10s)
  -log.format string
    	Output log messages in the given format. Valid formats: [logfmt, json] (default "logfmt")
  -log.level value
    	Only log messages with the given severity or above. Valid levels: [debug, info, warn, error] (default info)
  -log_backtrace_at value
    	when logging hits line file:N, emit a stack trace
  -log_dir string
    	If non-empty, write log files in this directory
  -log_link string
    	If non-empty, add symbolic links in this directory to the log files
  -logbuflevel int
    	Buffer log messages logged at this level or lower (-1 means don't buffer; 0 means buffer INFO only; ...). Has limited applicability on non-prod platforms.
  -logtostderr
    	log to standard error instead of files
  -s3.access-key-id string
    	S3 access key ID
  -s3.bucket-lookup-type value
    	Bucket lookup style type, used to access bucket in S3-compatible service. Default is auto. Supported values are: auto, path, virtual-hosted.
  -s3.bucket-name string
    	S3 bucket name
  -s3.dualstack-enabled
    	When enabled, direct all AWS S3 requests to the dual-stack IPv4/IPv6 endpoint for the configured region. (default true)
  -s3.endpoint string
    	The S3 bucket endpoint. It could be an AWS S3 endpoint listed at https://docs.aws.amazon.com/general/latest/gr/s3.html or the address of an S3-compatible service in hostname:port format.
  -s3.expect-continue-timeout duration
    	The time to wait for a server's first response headers after fully writing the request headers if the request has an Expect header. Set to 0 to send the request body immediately. (default 1s)
  -s3.http.idle-conn-timeout duration
    	The time an idle connection remains idle before closing. (default 1m30s)
  -s3.http.insecure-skip-verify
    	If the client connects to object storage via HTTPS and this option is enabled, the client accepts any certificate and hostname.
  -s3.http.response-header-timeout duration
    	The amount of time the client waits for a server's response headers. (default 2m0s)
  -s3.http.tls-ca-path string
    	Path to the Certificate Authority (CA) certificates to validate the server certificate. If not set, the host's root CA certificates are used.
  -s3.http.tls-cert-path string
    	Path to the client certificate, which is used for authenticating with the server. This setting also requires you to configure the key path.
  -s3.http.tls-key-path string
    	Path to the key for the client certificate. This setting also requires you to configure the client certificate.
  -s3.http.tls-server-name string
    	Override the expected name on the server certificate.
  -s3.insecure
    	If enabled, use http:// for the S3 endpoint instead of https://. This could be useful in local dev/test environments while using an S3-compatible backend storage, like Minio.
  -s3.list-objects-version string
    	Use a specific version of the S3 list object API. Supported values are v1 or v2. Default is unset.
  -s3.max-connections-per-host int
    	Maximum number of connections per host. Set to 0 for no limit.
  -s3.max-idle-connections int
    	Maximum number of idle (keep-alive) connections across all hosts. Set to 0 for no limit. (default 100)
  -s3.max-idle-connections-per-host int
    	Maximum number of idle (keep-alive) connections to keep per-host. Set to 0 to use a built-in default value of 2. (default 100)
  -s3.native-aws-auth-enabled
    	If enabled, it will use the default authentication methods of the AWS SDK for go based on known environment variables and known AWS config files.
  -s3.part-size uint
    	The minimum file size in bytes used for multipart uploads. If 0, the value is optimally computed for each object.
  -s3.region string
    	S3 region. If unset, the client will issue a S3 GetBucketLocation API call to autodetect it.
  -s3.secret-access-key value
    	S3 secret access key
  -s3.send-content-md5
    	If enabled, a Content-MD5 header is sent with S3 Put Object requests. Consumes more resources to compute the MD5, but may improve compatibility with object storage services that do not support checksums.
  -s3.session-token value
    	S3 session token
  -s3.signature-version string
    	The signature version to use for authenticating against S3. Supported values are: v4, v2. (default "v4")
  -s3.sse.kms-encryption-context string
    	KMS Encryption Context used for object encryption. It expects JSON formatted string.
  -s3.sse.kms-key-id string
    	KMS Key ID used to encrypt objects in S3
  -s3.sse.type string
    	Enable AWS Server Side Encryption. Supported values: SSE-KMS, SSE-S3.
  -s3.storage-class string
    	The S3 storage class to use, not set by default. Details can be found at https://aws.amazon.com/s3/storage-classes/. Supported values are: STANDARD, REDUCED_REDUNDANCY, GLACIER, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, DEEP_ARCHIVE, OUTPOSTS, GLACIER_IR, SNOW, EXPRESS_ONEZONE
  -s3.sts-endpoint string
    	Accessing S3 resources using temporary, secure credentials provided by AWS Security Token Service.
  -s3.tls-handshake-timeout duration
    	Maximum time to wait for a TLS handshake. Set to 0 for no limit. (default 10s)
  -s3.trace.enabled
    	When enabled, low-level S3 HTTP operation information is logged at the debug level.
  -stderrthreshold value
    	logs at or above this threshold go to stderr (default 2)
  -storage-prefix string
    	Prefix for all objects stored in the backend storage. For simplicity, it may only contain digits and English alphabet letters.
  -swift.application-credential-id string
    	OpenStack Swift application credential id
  -swift.application-credential-name string
    	OpenStack Swift application credential name
  -swift.application-credential-secret value
    	OpenStack Swift application credential secret
  -swift.auth-url string
    	OpenStack Swift authentication URL
  -swift.auth-version int
    	OpenStack Swift authentication API version. 0 to autodetect.
  -swift.connect-timeout duration
    	Time after which a connection attempt is aborted. (default 10s)
  -swift.container-name string
    	Name of the OpenStack Swift container to put chunks in.
  -swift.domain-id string
    	OpenStack Swift user's domain ID.
  -swift.domain-name string
    	OpenStack Swift user's domain name.
  -swift.max-retries int
    	Max retries on requests error. (default 3)
  -swift.password value
    	OpenStack Swift API key.
  -swift.project-domain-id string
    	ID of the OpenStack Swift project's domain (v3 auth only), only needed if it differs the from user domain.
  -swift.project-domain-name string
    	Name of the OpenStack Swift project's domain (v3 auth only), only needed if it differs from the user domain.
  -swift.project-id string
    	OpenStack Swift project ID (v2,v3 auth only).
  -swift.project-name string
    	OpenStack Swift project name (v2,v3 auth only).
  -swift.region-name string
    	OpenStack Swift Region to use (v2,v3 auth only).
  -swift.request-timeout duration
    	Time after which an idle request is aborted. The timeout watchdog is reset each time some data is received, so the timeout triggers after X time no data is received on a request. (default 5s)
  -swift.user-domain-id string
    	OpenStack Swift user's domain ID.
  -swift.user-domain-name string
    	OpenStack Swift user's domain name.
  -swift.user-id string
    	OpenStack Swift user ID.
  -swift.username string
    	OpenStack Swift username.
  -tenant string
    	Tenant to process
  -v value
    	log level for V logs
  -vmodule value
    	comma-separated list of pattern=N settings for file-filtered logging
running test pipeline for subpackage grafana-mimir-mimirtool
building test workspace in: '/tmp/melange-guest-3044659921-grafana-mimir-mimirtool' with apko
2025/01/12 07:34:06 [DEBUG] GET https://apk.cgr.dev/wolfi-presubmit/f6d31f7eac5dbaf8c865cd18b028a095f66ad8ad/apk-configuration
2025/01/12 07:34:06 [DEBUG] GET https://packages.wolfi.dev/os/apk-configuration
setting apk repositories: [https://apk.cgr.dev/wolfi-presubmit/f6d31f7eac5dbaf8c865cd18b028a095f66ad8ad https://packages.wolfi.dev/os]
image configuration:
  contents:
    build repositories: []
    runtime repositories: []
    keyring:      []
    packages:     [grafana-mimir-mimirtool]