apunkt/imageproxy
1
0
Fork 0
mirror of https://github.com/willnorris/imageproxy.git synced 2026-05-17 15:55:13 +02:00
Code Issues Projects Releases Packages Wiki Activity

docker: cosign sign tags rather than digest

Browse source
This commit is contained in:
Will Norris 2022-12-06 08:53:06 -08:00
parent 4121c064ee
commit 631d363749
1 changed files with 3 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

5
.github/workflows/docker.yml vendored
View file

@ -46,7 +46,7 @@ jobs:
uses: docker/build-push-action@c56af957549030174b10d6867f20e78cfd7debc5 # v3.2.0 uses: docker/build-push-action@c56af957549030174b10d6867f20e78cfd7debc5 # v3.2.0
with: with:
context: . context: .
push: ${{ github.event_name != 'pull_request' }} push: ${{ github.event_name == 'push' }}
tags: ${{ steps.meta.outputs.tags }} tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }} labels: ${{ steps.meta.outputs.labels }}
platforms: linux/amd64,linux/arm64,linux/arm/v7 platforms: linux/amd64,linux/arm64,linux/arm/v7
@ -58,5 +58,6 @@ jobs:
- name: Sign the published Docker image - name: Sign the published Docker image
if: github.event_name == 'push' if: github.event_name == 'push'
env: env:
TAGS: ${{ steps.meta.outputs.tags }}
COSIGN_EXPERIMENTAL: "true" COSIGN_EXPERIMENTAL: "true"
run: cosign sign ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}@${{ steps.build-and-push.outputs.digest }} run: cosign sign ${TAGS}