Archives
/
smallstep-certificates
mirror of https://github.com/smallstep/certificates
2
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

[action] cosign over docker image digest

Browse Source
v0.22.2-rc16
max furman 2 years ago
parent c43d59a69a
commit e9b792755d
No known key found for this signature in database
2 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File

6
.github/workflows/release.yml vendored
Unescape Escape View File

@ -98,4 +98,10 @@ jobs:
env:
DOCKER_USERNAME: ${{ secrets.DOCKER_USERNAME }}
DOCKER_PASSWORD: ${{ secrets.DOCKER_PASSWORD }}
- name: Cosign
id: cosign
run: |
DIGEST=$(docker images --digests --format "{{.Digest}}" smallstep/step-ca | head -n 1 | tr -d '[:space:]')
cosign sign -r smallstep/step-ca@${DIGEST}
env:
COSIGN_EXPERIMENTAL: 1

1
make/docker.mk
Unescape Escape View File

@ -54,7 +54,6 @@ define DOCKER_BUILDX
# $(1) -- Image Tag
# $(2) -- Push (empty is no push | --push will push to dockerhub)
docker buildx build . --progress plain -t $(DOCKER_IMAGE_NAME):$(1) -f docker/Dockerfile.step-ca --platform="$(DOCKER_PLATFORMS)" $(2)
cosign sign -r $(DOCKER_IMAGE_NAME):$(1)
endef

Write Preview
Loading…
Cancel
Save