From d1a7f96b5efae5bad67ea35cfbe80588cf90d9eb Mon Sep 17 00:00:00 2001
From: Terin Stock <terinjokes@gmail.com>
Date: Fri, 17 May 2024 10:01:50 +0200
Subject: [PATCH] chore(docker): enable sbom and cache

Update the Docker publishing Action to enable SBOM and provenance
attestations to the published images, as well as enabling caching of
layers across runs.
---
 .github/workflows/docker.yaml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/docker.yaml b/.github/workflows/docker.yaml
index f68fd01..12235e3 100644
--- a/.github/workflows/docker.yaml
+++ b/.github/workflows/docker.yaml
@@ -25,5 +25,9 @@ jobs:
         with:
           file: ./cmd/controller/Dockerfile
           platforms: linux/amd64, linux/arm64
+          sbom: true
           tags: ${{ steps.docker-meta.outputs.tags }}
+          labels: ${{ steps.docker-meta.outputs.labels }}
           push: ${{ startsWith(github.ref, 'refs/tags/v') }}
+          cache-from: type=gha
+          cache-to: type=gha,mode=max