public_git
/
kaniko
mirror of https://github.com/GoogleContainerTools/kaniko
1
0
Fork 0
Code Issues Releases Wiki Activity

Bump the cosign version (a lot) (#1839) 

The cosign version being used was ancient.  This catches us up to 1.4.1 (latest).

I was also eyeballing the very redundant jobs in `release.yaml` for a subsequent refactoring to make this a matrix job, so there are a couple of trivial cleanups related to this.
This commit is contained in:
Matt Moore 2021-12-17 14:51:28 -08:00 committed by GitHub
parent 49f0154b3f
commit 2e8a13943f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 10 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
.github/workflows/release.yaml vendored
View File

@ -57,7 +57,7 @@ jobs:
with: with:
context: . context: .
file: ./deploy/Dockerfile file: ./deploy/Dockerfile
platforms: linux/amd64,linux/arm64 platforms: ${{ env.PLATFORMS }}
push: true push: true
tags: | tags: |
gcr.io/kaniko-project/executor:${{ env.GITHUB_SHA }} gcr.io/kaniko-project/executor:${{ env.GITHUB_SHA }}
@ -67,7 +67,7 @@ jobs:
- name: Sign images - name: Sign images
uses: sigstore/cosign-installer@main uses: sigstore/cosign-installer@main
with: with:
cosign-release: 'v0.2.0' cosign-release: 'v1.4.1'
# Use cosign to sign the images # Use cosign to sign the images
- run: | - run: |
@ -81,6 +81,7 @@ jobs:
GITHUB_SHA: ${{ github.sha }} GITHUB_SHA: ${{ github.sha }}
GITHUB_REF: ${{ github.ref }} GITHUB_REF: ${{ github.ref }}
PLATFORMS: "linux/amd64,linux/arm64" PLATFORMS: "linux/amd64,linux/arm64"
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Clone source code - name: Clone source code
@ -126,7 +127,7 @@ jobs:
with: with:
context: . context: .
file: ./deploy/Dockerfile_debug file: ./deploy/Dockerfile_debug
platforms: linux/amd64,linux/arm64 platforms: ${{ env.PLATFORMS }}
push: true push: true
tags: | tags: |
gcr.io/kaniko-project/executor:${{ env.GITHUB_SHA }}-debug gcr.io/kaniko-project/executor:${{ env.GITHUB_SHA }}-debug
@ -136,7 +137,7 @@ jobs:
- name: Sign images - name: Sign images
uses: sigstore/cosign-installer@main uses: sigstore/cosign-installer@main
with: with:
cosign-release: 'v0.2.0' cosign-release: 'v1.4.1'
# Use cosign to sign the images # Use cosign to sign the images
- run: | - run: |
@ -150,6 +151,7 @@ jobs:
GITHUB_SHA: ${{ github.sha }} GITHUB_SHA: ${{ github.sha }}
GITHUB_REF: ${{ github.ref }} GITHUB_REF: ${{ github.ref }}
PLATFORMS: "linux/amd64,linux/arm64" PLATFORMS: "linux/amd64,linux/arm64"
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Clone source code - name: Clone source code
@ -194,7 +196,7 @@ jobs:
with: with:
context: . context: .
file: ./deploy/Dockerfile_warmer file: ./deploy/Dockerfile_warmer
platforms: linux/amd64,linux/arm64 platforms: ${{ env.PLATFORMS }}
push: true push: true
tags: | tags: |
gcr.io/kaniko-project/warmer:${{ env.GITHUB_SHA }} gcr.io/kaniko-project/warmer:${{ env.GITHUB_SHA }}
@ -204,7 +206,7 @@ jobs:
- name: Sign images - name: Sign images
uses: sigstore/cosign-installer@main uses: sigstore/cosign-installer@main
with: with:
cosign-release: 'v0.2.0' cosign-release: 'v1.4.1'
# Use cosign to sign the images # Use cosign to sign the images
- run: | - run: |
@ -264,7 +266,7 @@ jobs:
with: with:
context: . context: .
file: ./deploy/Dockerfile_slim file: ./deploy/Dockerfile_slim
platforms: linux/amd64,linux/arm64,linux/s390x,linux/ppc64le platforms: ${{ env.PLATFORMS }}
push: true push: true
tags: | tags: |
gcr.io/kaniko-project/executor:${{ env.GITHUB_SHA }}-slim gcr.io/kaniko-project/executor:${{ env.GITHUB_SHA }}-slim
@ -274,7 +276,7 @@ jobs:
- name: Sign images - name: Sign images
uses: sigstore/cosign-installer@main uses: sigstore/cosign-installer@main
with: with:
cosign-release: 'v0.2.0' cosign-release: 'v1.4.1'
# Use cosign to sign the images # Use cosign to sign the images
- run: | - run: |