Skip to content
This repository was archived by the owner on Apr 2, 2024. It is now read-only.

Commit 62369a1

Browse files
amrc-benmorrowamrc-benmorrow
authored
Fix cosign errors on build (#17)
* Remove the update-version step, it's never used. * Perform builds for all releases, I want this to run on dev releases. * Update the cosign code.
2 parents fa7a953 + f2e8fe8 commit 62369a1

File tree

1 file changed

+2
-28
lines changed

1 file changed

+2
-28
lines changed

.github/workflows/docker-publish.yml

Lines changed: 2 additions & 28 deletions
Original file line numberDiff line numberDiff line change
@@ -6,32 +6,8 @@ env:
66
on:
77
release:
88
types: [ published ]
9-
# Trigger only when a release with tag v*.*.* is published
10-
tags:
11-
- 'v[0-9]+.[0-9]+.[0-9]+'
129

1310
jobs:
14-
update-version:
15-
runs-on: ubuntu-latest
16-
steps:
17-
- uses: actions/checkout@v3
18-
- name: Update version in package.json
19-
run: |
20-
CURRENT_TAG=${GITHUB_REF#refs/tags/}
21-
echo "Current tag: $CURRENT_TAG"
22-
VERSION="${CURRENT_TAG#v}"
23-
echo "Updating version to: $VERSION"
24-
jq ".version = \"$VERSION\"" package.json > package.json.tmp
25-
mv package.json.tmp package.json
26-
- name: Create Pull Request
27-
uses: peter-evans/create-pull-request@v4
28-
with:
29-
title: Update package.json version
30-
branch: update-version
31-
commit-message: Update package.json version
32-
body: Update the version of `package.json` as part of release process
33-
delete-branch: true
34-
base: main
3511
build:
3612
runs-on: ubuntu-latest
3713
permissions:
@@ -47,9 +23,7 @@ jobs:
4723
# https://github.com/sigstore/cosign-installer
4824
- name: Install cosign
4925
if: github.event_name != 'pull_request'
50-
uses: sigstore/cosign-installer@f3c664df7af409cb4873aa5068053ba9d61a57b6 #v2.6.0
51-
with:
52-
cosign-release: 'v1.13.1'
26+
uses: sigstore/[email protected]
5327

5428
# Workaround: https://github.com/docker/build-push-action/issues/461
5529
- name: Setup Docker buildx
@@ -98,4 +72,4 @@ jobs:
9872
COSIGN_EXPERIMENTAL: "true"
9973
# This step uses the identity token to provision an ephemeral certificate
10074
# against the sigstore community Fulcio instance.
101-
run: echo "${{ steps.meta.outputs.tags }}" | xargs -I {} cosign sign {}@${{ steps.build-and-push.outputs.digest }}
75+
run: echo "${{ steps.meta.outputs.tags }}" | xargs -I {} cosign sign --yes {}@${{ steps.build-and-push.outputs.digest }}

0 commit comments

Comments
 (0)