Skip to content

Signature from @jonnystoten #7

Signature from @jonnystoten

Signature from @jonnystoten #7

Workflow file for this run

name: TUF-on-CI signing event
permissions: {}
on:
workflow_dispatch:
push:
branches: ['sign/**']
paths: ['metadata/**', 'targets/**']
jobs:
handle-signing-event:
name: TUF-on-CI signing event
runs-on: ubuntu-latest
permissions:
contents: write # for making commits in signing event and for modifying draft state
pull-requests: write # for modifying signing event pull requests
actions: write # for dispatching another signing-event workflow
steps:
- name: Generate GitHub App Token
id: app-token
uses: actions/create-github-app-token@c8f55efbd427e7465d6da1106e7979bc8aaee856 # v1.10.1
with:
app-id: ${{ vars.APP_ID }}
private-key: ${{ secrets.APP_PRIVATE_KEY }}
- name: Signing event
uses: theupdateframework/tuf-on-ci/actions/signing-event@a486e2d6fcf93af4cb0f479e6a280f34125647d6 # v0.10.0
with:
token: ${{ steps.app-token.outputs.token }}