fluxcd
/
image-automation-controller
mirror of https://github.com/fluxcd/image-automation-controller.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #478 from fluxcd/docker-sbom 

build: Enable SBOM and SLSA Provenance
This commit is contained in:
Stefan Prodan 2023-01-30 16:09:50 +02:00 committed by GitHub
parent d3eb70b366 576cd7e331
commit 6766f3b451
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
.github/workflows/release.yml vendored
View File

@ -32,8 +32,8 @@ jobs:
if [[ $GITHUB_REF == refs/tags/* ]]; then if [[ $GITHUB_REF == refs/tags/* ]]; then
VERSION=${GITHUB_REF/refs\/tags\//} VERSION=${GITHUB_REF/refs\/tags\//}
fi fi
echo ::set-output name=BUILD_DATE::$(date -u +'%Y-%m-%dT%H:%M:%SZ') echo "BUILD_DATE=$(date -u +'%Y-%m-%dT%H:%M:%SZ')" >> $GITHUB_OUTPUT
echo ::set-output name=VERSION::${VERSION} echo "VERSION=${VERSION}" >> $GITHUB_OUTPUT
- name: Setup QEMU - name: Setup QEMU
uses: docker/setup-qemu-action@v2 uses: docker/setup-qemu-action@v2
- name: Setup Docker Buildx - name: Setup Docker Buildx
@ -62,6 +62,8 @@ jobs:
- name: Publish images - name: Publish images
uses: docker/build-push-action@v3 uses: docker/build-push-action@v3
with: with:
sbom: true
provenance: true
push: true push: true
builder: ${{ steps.buildx.outputs.name }} builder: ${{ steps.buildx.outputs.name }}
context: . context: .

2
Dockerfile
View File

@ -61,7 +61,7 @@ RUN export CGO_LDFLAGS="-static -fuse-ld=lld" && \
# Ensure that the binary was cross-compiled correctly to the target platform. # Ensure that the binary was cross-compiled correctly to the target platform.
RUN xx-verify --static /image-automation-controller RUN xx-verify --static /image-automation-controller
FROM alpine:3.16 FROM alpine:3.17
ARG TARGETPLATFORM ARG TARGETPLATFORM
RUN apk --no-cache add ca-certificates \ RUN apk --no-cache add ca-certificates \