Merge pull request #965 from aws/dev #36
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Pushes Docker images created from the deploy tool's Dockerfile templates to an internal ECR so that they can be scanned for security vulnerabilities. | |
| name: Upload Docker Images | |
| on: | |
| # Manually trigger on specific branches | |
| workflow_dispatch: | |
| push: | |
| branches: | |
| - main | |
| permissions: | |
| id-token: write | |
| jobs: | |
| upload-docker-images: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Configure AWS Credentials | |
| uses: aws-actions/configure-aws-credentials@b47578312673ae6fa5b5096b330d9fbac3d116df #v4.2.1 | |
| with: | |
| aws-region: us-west-2 | |
| role-to-assume: ${{ secrets.DOCKER_IMAGE_UPLOADER_ROLE }} | |
| role-duration-seconds: 1800 | |
| - name: Checkout Repository | |
| uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 #v4.2.2 | |
| with: | |
| fetch-depth: 0 | |
| - name: Setup .NET 8 | |
| uses: actions/setup-dotnet@67a3573c9a986a3f9c594539f4ab511d57bb3ce9 #v4.3.1 | |
| with: | |
| dotnet-version: 8.0.x | |
| - name: Restore dependencies | |
| run: dotnet restore | |
| - name: Build | |
| run: dotnet build --no-restore | |
| - name: Run Docker Image Uploader | |
| run: | | |
| cd ./test/AWS.Deploy.DockerImageUploader | |
| dotnet run --project ./AWS.Deploy.DockerImageUploader.csproj |