Skip to content

Feature/versions (#824) #499

Feature/versions (#824)

Feature/versions (#824) #499

Workflow file for this run

name: image
on:
push:
branches:
- main
- release-1.12
permissions:
id-token: write
packages: write
security-events: write
jobs:
ko:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
- name: Set up Go
uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
with:
go-version-file: backend/go.mod
cache-dependency-path: backend/go.sum
- name: Login
uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
with:
registry: ghcr.io
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Install Cosign
uses: sigstore/cosign-installer@4959ce089c160fddf62f7b42464195ba1a56d382 # v3.6.0
- name: Build assets
run: |
set -e
make build-backend-assets
- name: Publish image
id: ko-publish
run: |
set -e
echo "digest=$(VERSION=${{ github.ref_name }} make ko-publish)" >> $GITHUB_OUTPUT
- name: Sign image
run: |
set -e
cosign sign ${{ steps.ko-publish.outputs.digest }} --yes