-
-
Notifications
You must be signed in to change notification settings - Fork 72
50 lines (47 loc) · 1.84 KB
/
push.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
name: push-artifacts
on:
workflow_dispatch:
inputs:
version:
description: 'RC version'
required: true
permissions:
contents: read
jobs:
push-minimal:
runs-on: ubuntu-latest
permissions:
id-token: write
packages: write
steps:
- name: Checkout
uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
- name: Setup Cosign
uses: sigstore/cosign-installer@11086d25041f77fe8fe7b9ea4e48e3b9192b8f19 # v3.1.2
- name: Setup Timoni
uses: ./actions/setup
- name: Login to GHCR
uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
with:
registry: ghcr.io
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Push minimal module
run: |
timoni mod push ./examples/minimal oci://ghcr.io/stefanprodan/timoni/minimal \
-v ${{ github.event.inputs.version }} --latest \
-a 'org.opencontainers.image.licenses=Apache-2.0' \
-a 'org.opencontainers.image.source=https://github.com/stefanprodan/timoni' \
-a 'org.opencontainers.image.description=A minimal timoni.sh module.' \
-a 'org.opencontainers.image.documentation=https://timoni.sh' \
--sign cosign
- name: Push schemas
run: |
timoni artifact push oci://ghcr.io/stefanprodan/timoni/schemas \
-f ./schemas -t ${{ github.event.inputs.version }} -t latest \
-a 'org.opencontainers.image.licenses=Apache-2.0' \
-a 'org.opencontainers.image.source=https://github.com/stefanprodan/timoni' \
-a 'org.opencontainers.image.description=Timoni CUE schemas.' \
-a 'org.opencontainers.image.documentation=https://timoni.sh' \
--content-type="cue.mod/pkg" \
--sign cosign