Skip to content
build-verify-package

chore: #174 Update the version number in CLI version command ;-) #187

Sign in to view logs

chore: #174 Update the version number in CLI version command ;-)

chore: #174 Update the version number in CLI version command ;-) #187

Workflow file for this run

.github/workflows/build-verify.yml at 511f8c5
name: build-verify-package
on:
push:
paths-ignore:
#- '.github/**'
- '.gitignore'
- 'LICENSE'
- '*.md'
pull_request:
paths-ignore:
- '.github/**'
- '.gitignore'
- 'LICENSE'
- '*.md'
permissions:
contents: read
id-token: write # needed for signing the images with GitHub OIDC Token
jobs:
build-verify-package:
runs-on: ubuntu-latest
environment: Build
steps:
- name: Get current date
id: date
#run: echo "::set-output name=date::$(date +'%Y-%m-%dT%H:%M:%S')"
run: echo "date=$(date +'%Y-%m-%dT%H:%M:%SZ')" >> $GITHUB_OUTPUT
- name: Checkout Code
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 #v5.0.0
- name: Setup Go
uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 #v6.0.0
with:
go-version-file: ./go.mod
cache-dependency-path: ./go.sum
- name: Build Go packages
run: |
make clean
make build-binaries
- name: Set environment for branch
run: |
set -x
if [[ $GITHUB_REF == 'refs/heads/master' ]]; then
echo "IMAGE_TAG=nightly" >> "$GITHUB_ENV"
echo "IMAGE_TAG=nightly" >> "$GITHUB_OUTPUT"
echo "PACKAGE_IMAGE=true" >> "$GITHUB_ENV"
echo "PACKAGE_IMAGE=true" >> "$GITHUB_OUTPUT"
elif [[ $GITHUB_REF == 'refs/heads/1.x' ]]; then
echo "IMAGE_TAG=next" >> "$GITHUB_ENV"
echo "IMAGE_TAG=next" >> "$GITHUB_OUTPUT"
echo "PACKAGE_IMAGE=true" >> "$GITHUB_ENV"
echo "PACKAGE_IMAGE=true" >> "$GITHUB_OUTPUT"
elif [[ $GITHUB_REF == "refs/tags/$GITHUB_REF_NAME" ]]; then
echo "IMAGE_TAG=$GITHUB_REF_NAME" >> "$GITHUB_ENV"
echo "IMAGE_TAG=$GITHUB_REF_NAME" >> "$GITHUB_OUTPUT"
echo "PACKAGE_IMAGE=true" >> "$GITHUB_ENV"
echo "PACKAGE_IMAGE=true" >> "$GITHUB_OUTPUT"
else
echo "PACKAGE_IMAGE=false" >> "$GITHUB_ENV"
echo "PACKAGE_IMAGE=false" >> "$GITHUB_OUTPUT"
fi
- name: Install Cosign
if: github.repository_owner == 'microcks' && env.PACKAGE_IMAGE == 'true'
uses: sigstore/cosign-installer@d58896d6a1865668819e1d91763c7751a165e159 # v3.9.2
- name: Set up QEMU
if: github.repository_owner == 'microcks' && env.PACKAGE_IMAGE == 'true'
uses: docker/setup-qemu-action@29109295f81e9208d7d86ff1c6c12d2833863392 # v3.6.0
- name: Set up Docker Buildx
if: github.repository_owner == 'microcks' && env.PACKAGE_IMAGE == 'true'
uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
- name: Login to Quay.io and Docker Hub registries and setup multi-arch builder
if: github.repository_owner == 'microcks' && env.PACKAGE_IMAGE == 'true'
run: |
echo ${{ secrets.QUAY_PASSWORD }} | docker login -u ${{ secrets.QUAY_USERNAME }} --password-stdin quay.io
echo ${{ secrets.DOCKERHUB_TOKEN }} | docker login -u ${{ secrets.DOCKERHUB_USERNAME }} --password-stdin docker.io
BUILDER=buildx-multi-arch
docker buildx inspect $BUILDER || docker buildx create --name=$BUILDER --driver=docker-container --driver-opt=network=host
- name: Build and push container image for cli
id: build-and-push
uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 # v6.18.0
if: github.repository_owner == 'microcks' && env.PACKAGE_IMAGE == 'true'
with:
context: .
sbom: true
push: true
provenance: mode=max
platforms: linux/amd64,linux/arm64
builder: buildx-multi-arch
file: build/Dockerfile
labels: |
org.opencontainers.image.revision=${GITHUB_SHA}
org.opencontainers.image.created=${{ steps.date.outputs.date }}
tags: quay.io/microcks/microcks-cli:${{env.IMAGE_TAG}},docker.io/microcks/microcks-cli:${{env.IMAGE_TAG}}
- name: Sign the image with GitHub OIDC Token
if: github.repository_owner == 'microcks' && env.PACKAGE_IMAGE == 'true'
env:
DIGEST: ${{ steps.build-and-push.outputs.digest }}
TAGS: quay.io/microcks/microcks-cli:${{env.IMAGE_TAG}} docker.io/microcks/microcks-cli:${{env.IMAGE_TAG}}
COSIGN_EXPERIMENTAL: "true"
run: |
images=""
for tag in ${TAGS}; do
images+="${tag}@${DIGEST} "
done
cosign sign --yes ${images}