Add new workflow

gr0 · gr0 · commit ab3dc0d4bc35 · 2025-07-21T16:37:07.000+02:00
diff --git a/.github/workflows/goreleaser.yml b/.github/workflows/goreleaser.yml
@@ -0,0 +1,51 @@
+name: GoReleaser
+
+on:
+  push:
+    tags:
+      - 'v*'
+
+permissions:
+  contents: write
+  packages: write
+
+jobs:
+  goreleaser:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Set up Go
+        uses: actions/setup-go@v4
+        with:
+          go-version: '1.21'
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Log in to GitHub Container Registry
+        uses: docker/login-action@v3
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Install cosign
+        uses: sigstore/cosign-installer@v3
+        with:
+          cosign-release: 'v2.2.0'
+
+      - name: Run GoReleaser
+        uses: goreleaser/goreleaser-action@v5
+        with:
+          distribution: goreleaser
+          version: latest
+          args: release --clean
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          AZURE_STORAGE_SAS_TOKEN: ${{ secrets.AZURE_STORAGE_SAS_TOKEN }}
+          COSIGN_PRIVATE_KEY: ${{ secrets.COSIGN_PRIVATE_KEY }}
+          COSIGN_PASSWORD: ${{ secrets.COSIGN_PASSWORD }}
diff --git a/.goreleaser.yml b/.goreleaser.yml
@@ -36,5 +36,9 @@ dockers:
 blobs:
   # SAS token is passed via AZURE_STORAGE_SAS_TOKEN env var
   - provider: azblob
-    bucket: "public/chainloop-platform-plugin?storage_account=chainloopplatform"
-    directory: "/chainloop-platform-plugin"
+    bucket: "public/chainloop-platform-plugin"
+    directory: "chainloop-platform-plugin"
+    extra_files:
+      - glob: "./dist/*.tar.gz"
+      - glob: "./dist/*.zip"
+      - glob: "./dist/checksums.txt"
