|
@@ -16,7 +16,8 @@ jobs:
|
|
|
release:
|
|
release:
|
|
|
name: Create Release for esoctl
|
|
name: Create Release for esoctl
|
|
|
runs-on: ubuntu-latest
|
|
runs-on: ubuntu-latest
|
|
|
-
|
|
|
|
|
|
|
+ permissions:
|
|
|
|
|
+ contents: write
|
|
|
steps:
|
|
steps:
|
|
|
- name: Checkout
|
|
- name: Checkout
|
|
|
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
|
|
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
|
|
@@ -35,11 +36,11 @@ jobs:
|
|
|
run: go mod download
|
|
run: go mod download
|
|
|
|
|
|
|
|
- name: Install Syft
|
|
- name: Install Syft
|
|
|
- uses: anchore/sbom-action/download-syft@v0.17.9
|
|
|
|
|
|
|
+ uses: anchore/sbom-action/download-syft@df80a981bc6edbc4e220a492d3cbe9f5547a6e75 # v0.17.9
|
|
|
|
|
|
|
|
- name: Import GPG key
|
|
- name: Import GPG key
|
|
|
id: import_gpg
|
|
id: import_gpg
|
|
|
- uses: crazy-max/ghaction-import-gpg@v6
|
|
|
|
|
|
|
+ uses: crazy-max/ghaction-import-gpg@cb9bde2e2525e640591a934b1fd28eef1dcaf5e5 # v6.2.0
|
|
|
with:
|
|
with:
|
|
|
gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }}
|
|
gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }}
|
|
|
passphrase: ${{ secrets.GPG_PASSPHRASE }}
|
|
passphrase: ${{ secrets.GPG_PASSPHRASE }}
|
|
@@ -60,7 +61,7 @@ jobs:
|
|
|
git push origin $TAG
|
|
git push origin $TAG
|
|
|
|
|
|
|
|
- name: Run GoReleaser
|
|
- name: Run GoReleaser
|
|
|
- uses: goreleaser/goreleaser-action@v6.1.0
|
|
|
|
|
|
|
+ uses: goreleaser/goreleaser-action@9ed2f89a662bf1735a48bc8557fd212fa902bebf # v6.1.0
|
|
|
with:
|
|
with:
|
|
|
version: '~> v2'
|
|
version: '~> v2'
|
|
|
args: release --clean
|
|
args: release --clean
|
Gergely Brautigam