Skip to content

Build reusable workflow #3

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
crazy-max wants to merge 8 commits into from
Closed

Build reusable workflow #3

crazy-max wants to merge 8 commits into from

Conversation

@crazy-max
Copy link
Member

@crazy-max crazy-max commented Aug 18, 2025

No description provided.

@crazy-max
build reusable workflow
008be12 
Signed-off-by: CrazyMax <[email protected]>
@crazy-max
build: set meta labels and annotations
fb69de5 
Signed-off-by: CrazyMax <[email protected]>
@crazy-max
build: build args
0ad0402 
Signed-off-by: CrazyMax <[email protected]>
@crazy-max
build: build platforms
3b0cb21 
Signed-off-by: CrazyMax <[email protected]>
@crazy-max
build: install cosign and sign image
aa904a9 
This is based on cosign example workflow that signs
images with GitHub OIDC token. In our case we don't
want to sign images but attestations. Next commit
will do this.

Signed-off-by: CrazyMax <[email protected]>
@crazy-max
build: use oci-artifact for attestations
fedb1f3 
Signed-off-by: CrazyMax <[email protected]>
@crazy-max
build: step to get attestation manifest digest for signing
bf418e0 
Signed-off-by: CrazyMax <[email protected]>
@crazy-max
build: only sign attestation manifests
c3cdb74 
Signed-off-by: CrazyMax <[email protected]>
@github-advanced-security
Copy link

github-advanced-security bot commented Aug 18, 2025

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

@crazy-max crazy-max closed this Aug 18, 2025
@crazy-max crazy-max deleted the build-reusable-workflow branch August 18, 2025 15:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tonistiigi tonistiigi Awaiting requested review from tonistiigi

@colinhemmings colinhemmings Awaiting requested review from colinhemmings

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@crazy-max