Skip to content

Merge pull request #8 from stackitcloud/renovate/actions-checkout-3.x #1

Merge pull request #8 from stackitcloud/renovate/actions-checkout-3.x

Merge pull request #8 from stackitcloud/renovate/actions-checkout-3.x #1

Workflow file for this run

name: Release
on:
push:
tags:
- "*"
permissions: read-all
jobs:
release:
permissions:
id-token: write
packages: write
contents: write
runs-on: ubuntu-latest
env:
REGISTRY: ghcr.io
IMAGE_NAME: ${{ github.repository }}
steps:
- name: Checkout
uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
with:
fetch-depth: 0
- name: Git Fetch
run: git fetch --force --tags
- name: Setup go
uses: actions/setup-go@v4
with:
go-version: stable
- uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3.3.1
with:
path: |
~/.cache/go-build
~/go/pkg/mod
key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }}
restore-keys: |
${{ runner.os }}-go-
- uses: sigstore/cosign-installer@6e04d228eb30da1757ee4e1dd75a0ec73a653e06 # v3.1.1
- uses: anchore/sbom-action/download-syft@78fc58e266e87a38d4194b2137a3d4e9bcaf7ca1 # v0.14.3
- name: Set Up Docker Buildx
uses: docker/setup-buildx-action@v2
- name: Set up Cosign
uses: sigstore/[email protected]
- name: Login to Registry
uses: docker/login-action@v2
with:
registry: ${{ env.REGISTRY }}
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Release with Goreleaser
uses: goreleaser/goreleaser-action@v4
with:
distribution: goreleaser
version: latest
args: release --clean
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
COSIGN_PRIVATE_KEY: ${{secrets.COSIGN_PRIVATE_KEY}}
COSIGN_PASSWORD: ${{secrets.COSIGN_KEY_PASSWORD}}