Skip to content

Commit de067e9

Browse files
csatib02csatib02
authored
chore: prepare release (#238)
1 parent 97f33ec commit de067e9

File tree

7 files changed

+329
-212
lines changed

7 files changed

+329
-212
lines changed

Diff for: .github/workflows/artifacts.yaml

+20-8
Original file line numberDiff line numberDiff line change
@@ -90,13 +90,6 @@ jobs:
9090
helm package ${{ steps.chart-name.outputs.value }} --version ${{ steps.version.outputs.value }}
9191
echo "package=${{ steps.chart-name.outputs.value }}-${{ steps.version.outputs.value }}.tgz" >> "$GITHUB_OUTPUT"
9292
93-
- name: Sign chart with GitHub OIDC Token
94-
if: ${{ inputs.publish && github.repository_owner == 'bank-vaults' }} # Check if the workflow is called by the same GitHub organization
95-
env:
96-
PACKAGE: ${{ steps.build.outputs.package }}
97-
run: |
98-
cosign sign-blob --yes $PACKAGE
99-
10093
- name: Upload chart as artifact
10194
uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
10295
with:
@@ -112,11 +105,30 @@ jobs:
112105
if: inputs.publish && inputs.release
113106

114107
- name: Helm push
115-
run: helm push ${{ steps.build.outputs.package }} oci://${{ steps.oci-registry-name.outputs.value }}
108+
id: push
109+
run: |
110+
helm push ${{ steps.build.outputs.package }} oci://${{ steps.oci-registry-name.outputs.value }} &> push-metadata.txt
111+
echo "digest=$(awk '/Digest: /{print $2}' push-metadata.txt)" >> "$GITHUB_OUTPUT"
116112
env:
117113
HELM_REGISTRY_CONFIG: ~/.docker/config.json
118114
if: inputs.publish && inputs.release
119115

116+
- name: Sign chart with GitHub OIDC Token
117+
if: ${{ inputs.publish && inputs.release && github.repository_owner == 'bank-vaults' }} # Check if the workflow is called by the same GitHub organization
118+
env:
119+
DIGEST: ${{ steps.push.outputs.digest }}
120+
run: cosign sign --yes --rekor-url "https://rekor.sigstore.dev/" "${{ steps.oci-chart-name.outputs.value }}@${DIGEST}"
121+
122+
- name: Verify signed chart with cosign
123+
if: ${{ inputs.publish && inputs.release && github.repository_owner == 'bank-vaults' }} # Check if the workflow is called by the same GitHub organization
124+
env:
125+
DIGEST: ${{ steps.push.outputs.digest }}
126+
run: |
127+
cosign verify "${{ steps.oci-chart-name.outputs.value }}@${DIGEST}" \
128+
--rekor-url "https://rekor.sigstore.dev/" \
129+
--certificate-identity "https://github.com/${{ github.repository }}/.github/workflows/artifacts.yaml@${{ github.ref }}" \
130+
--certificate-oidc-issuer "https://token.actions.githubusercontent.com" | jq
131+
120132
- name: Upload package as artifact
121133
uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
122134
with:

Diff for: Makefile

+2-2
Original file line numberDiff line numberDiff line change
@@ -66,8 +66,8 @@ deps: bin/kind bin/helm bin/helm-docs
6666
deps: ## Install dependencies
6767

6868
# Dependency versions
69-
KIND_VERSION = 0.24.0
70-
HELM_VERSION = 3.16.1
69+
KIND_VERSION = 0.25.0
70+
HELM_VERSION = 3.16.3
7171
HELM_DOCS_VERSION = 1.14.2
7272

7373
# Dependency binaries

Diff for: go.mod

+99-51
Original file line numberDiff line numberDiff line change
@@ -2,83 +2,131 @@ module github.com/bank-vaults/vault-helm-chart
22

33
go 1.23.1
44

5-
require github.com/gruntwork-io/terratest v0.47.2
5+
require github.com/gruntwork-io/terratest v0.48.0
66

77
require (
8-
github.com/BurntSushi/toml v1.3.2 // indirect
9-
github.com/aws/aws-sdk-go v1.44.122 // indirect
10-
github.com/boombuler/barcode v1.0.1-0.20190219062509-6c824513bacc // indirect
11-
github.com/cpuguy83/go-md2man/v2 v2.0.0 // indirect
12-
github.com/davecgh/go-spew v1.1.1 // indirect
13-
github.com/emicklei/go-restful/v3 v3.9.0 // indirect
8+
filippo.io/edwards25519 v1.1.0 // indirect
9+
github.com/BurntSushi/toml v1.4.0 // indirect
10+
github.com/aws/aws-sdk-go-v2 v1.32.6 // indirect
11+
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream v1.6.7 // indirect
12+
github.com/aws/aws-sdk-go-v2/config v1.28.6 // indirect
13+
github.com/aws/aws-sdk-go-v2/credentials v1.17.47 // indirect
14+
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.16.21 // indirect
15+
github.com/aws/aws-sdk-go-v2/feature/s3/manager v1.17.43 // indirect
16+
github.com/aws/aws-sdk-go-v2/internal/configsources v1.3.25 // indirect
17+
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.6.25 // indirect
18+
github.com/aws/aws-sdk-go-v2/internal/ini v1.8.1 // indirect
19+
github.com/aws/aws-sdk-go-v2/internal/v4a v1.3.25 // indirect
20+
github.com/aws/aws-sdk-go-v2/service/acm v1.30.7 // indirect
21+
github.com/aws/aws-sdk-go-v2/service/autoscaling v1.51.1 // indirect
22+
github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs v1.45.0 // indirect
23+
github.com/aws/aws-sdk-go-v2/service/dynamodb v1.38.0 // indirect
24+
github.com/aws/aws-sdk-go-v2/service/ec2 v1.197.0 // indirect
25+
github.com/aws/aws-sdk-go-v2/service/ecr v1.36.7 // indirect
26+
github.com/aws/aws-sdk-go-v2/service/ecs v1.52.2 // indirect
27+
github.com/aws/aws-sdk-go-v2/service/iam v1.38.2 // indirect
28+
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.12.1 // indirect
29+
github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.4.6 // indirect
30+
github.com/aws/aws-sdk-go-v2/service/internal/endpoint-discovery v1.10.6 // indirect
31+
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.12.6 // indirect
32+
github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.18.6 // indirect
33+
github.com/aws/aws-sdk-go-v2/service/kms v1.37.7 // indirect
34+
github.com/aws/aws-sdk-go-v2/service/lambda v1.69.1 // indirect
35+
github.com/aws/aws-sdk-go-v2/service/rds v1.92.0 // indirect
36+
github.com/aws/aws-sdk-go-v2/service/route53 v1.46.3 // indirect
37+
github.com/aws/aws-sdk-go-v2/service/s3 v1.71.0 // indirect
38+
github.com/aws/aws-sdk-go-v2/service/secretsmanager v1.34.7 // indirect
39+
github.com/aws/aws-sdk-go-v2/service/sns v1.33.7 // indirect
40+
github.com/aws/aws-sdk-go-v2/service/sqs v1.37.2 // indirect
41+
github.com/aws/aws-sdk-go-v2/service/ssm v1.56.1 // indirect
42+
github.com/aws/aws-sdk-go-v2/service/sso v1.24.7 // indirect
43+
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.28.6 // indirect
44+
github.com/aws/aws-sdk-go-v2/service/sts v1.33.2 // indirect
45+
github.com/aws/smithy-go v1.22.1 // indirect
46+
github.com/boombuler/barcode v1.0.2 // indirect
47+
github.com/cpuguy83/go-md2man/v2 v2.0.5 // indirect
48+
github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect
49+
github.com/emicklei/go-restful/v3 v3.12.1 // indirect
50+
github.com/fxamacker/cbor/v2 v2.7.0 // indirect
1451
github.com/ghodss/yaml v1.0.0 // indirect
15-
github.com/go-errors/errors v1.0.2-0.20180813162953-d98b870cc4e0 // indirect
16-
github.com/go-logr/logr v1.2.4 // indirect
17-
github.com/go-openapi/jsonpointer v0.19.6 // indirect
18-
github.com/go-openapi/jsonreference v0.20.2 // indirect
19-
github.com/go-openapi/swag v0.22.3 // indirect
20-
github.com/go-sql-driver/mysql v1.4.1 // indirect
52+
github.com/go-errors/errors v1.5.1 // indirect
53+
github.com/go-logr/logr v1.4.2 // indirect
54+
github.com/go-openapi/jsonpointer v0.21.0 // indirect
55+
github.com/go-openapi/jsonreference v0.21.0 // indirect
56+
github.com/go-openapi/swag v0.23.0 // indirect
57+
github.com/go-sql-driver/mysql v1.8.1 // indirect
2158
github.com/gogo/protobuf v1.3.2 // indirect
22-
github.com/golang/protobuf v1.5.3 // indirect
59+
github.com/golang/protobuf v1.5.4 // indirect
2360
github.com/gonvenience/bunt v1.3.5 // indirect
24-
github.com/gonvenience/neat v1.3.12 // indirect
61+
github.com/gonvenience/neat v1.3.13 // indirect
2562
github.com/gonvenience/term v1.0.2 // indirect
2663
github.com/gonvenience/text v1.0.7 // indirect
27-
github.com/gonvenience/wrap v1.1.2 // indirect
64+
github.com/gonvenience/wrap v1.2.0 // indirect
2865
github.com/gonvenience/ytbx v1.4.4 // indirect
29-
github.com/google/gnostic-models v0.6.8 // indirect
30-
github.com/google/go-cmp v0.5.9 // indirect
66+
github.com/google/gnostic-models v0.6.9 // indirect
67+
github.com/google/go-cmp v0.6.0 // indirect
3168
github.com/google/gofuzz v1.2.0 // indirect
32-
github.com/google/uuid v1.3.0 // indirect
33-
github.com/gruntwork-io/go-commons v0.8.0 // indirect
34-
github.com/hashicorp/errwrap v1.0.0 // indirect
35-
github.com/hashicorp/go-multierror v1.1.0 // indirect
36-
github.com/homeport/dyff v1.6.0 // indirect
37-
github.com/imdario/mergo v0.3.11 // indirect
69+
github.com/google/uuid v1.6.0 // indirect
70+
github.com/gorilla/websocket v1.5.0 // indirect
71+
github.com/gruntwork-io/go-commons v0.17.2 // indirect
72+
github.com/hashicorp/errwrap v1.1.0 // indirect
73+
github.com/hashicorp/go-multierror v1.1.1 // indirect
74+
github.com/homeport/dyff v1.9.4 // indirect
75+
github.com/jackc/pgpassfile v1.0.0 // indirect
76+
github.com/jackc/pgservicefile v0.0.0-20240606120523-5a60cdf6a761 // indirect
77+
github.com/jackc/pgx/v5 v5.7.1 // indirect
78+
github.com/jackc/puddle/v2 v2.2.2 // indirect
3879
github.com/jmespath/go-jmespath v0.4.0 // indirect
3980
github.com/josharian/intern v1.0.0 // indirect
4081
github.com/json-iterator/go v1.1.12 // indirect
4182
github.com/lucasb-eyer/go-colorful v1.2.0 // indirect
4283
github.com/mailru/easyjson v0.7.7 // indirect
4384
github.com/mattn/go-ciede2000 v0.0.0-20170301095244-782e8c62fec3 // indirect
44-
github.com/mattn/go-isatty v0.0.19 // indirect
45-
github.com/mattn/go-zglob v0.0.2-0.20190814121620-e3c945676326 // indirect
85+
github.com/mattn/go-isatty v0.0.20 // indirect
86+
github.com/mattn/go-zglob v0.0.6 // indirect
4687
github.com/mitchellh/go-homedir v1.1.0 // indirect
4788
github.com/mitchellh/go-ps v1.0.0 // indirect
4889
github.com/mitchellh/hashstructure v1.1.0 // indirect
49-
github.com/moby/spdystream v0.2.0 // indirect
90+
github.com/moby/spdystream v0.5.0 // indirect
5091
github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
5192
github.com/modern-go/reflect2 v1.0.2 // indirect
5293
github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
53-
github.com/pmezard/go-difflib v1.0.0 // indirect
54-
github.com/pquerna/otp v1.2.0 // indirect
94+
github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f // indirect
95+
github.com/pkg/errors v0.9.1 // indirect
96+
github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 // indirect
97+
github.com/pquerna/otp v1.4.0 // indirect
5598
github.com/russross/blackfriday/v2 v2.1.0 // indirect
56-
github.com/sergi/go-diff v1.3.1 // indirect
99+
github.com/sergi/go-diff v1.3.2-0.20230802210424-5b0b94c5c0d3 // indirect
57100
github.com/spf13/pflag v1.0.5 // indirect
58-
github.com/stretchr/testify v1.8.4 // indirect
101+
github.com/stretchr/testify v1.10.0 // indirect
59102
github.com/texttheater/golang-levenshtein v1.0.1 // indirect
60-
github.com/urfave/cli v1.22.2 // indirect
103+
github.com/urfave/cli/v2 v2.27.5 // indirect
61104
github.com/virtuald/go-ordered-json v0.0.0-20170621173500-b18e6e673d74 // indirect
62-
golang.org/x/crypto v0.21.0 // indirect
63-
golang.org/x/net v0.23.0 // indirect
64-
golang.org/x/oauth2 v0.8.0 // indirect
65-
golang.org/x/sync v0.4.0 // indirect
66-
golang.org/x/sys v0.18.0 // indirect
67-
golang.org/x/term v0.18.0 // indirect
68-
golang.org/x/text v0.14.0 // indirect
69-
golang.org/x/time v0.3.0 // indirect
70-
google.golang.org/appengine v1.6.7 // indirect
71-
google.golang.org/protobuf v1.33.0 // indirect
105+
github.com/x448/float16 v0.8.4 // indirect
106+
github.com/xrash/smetrics v0.0.0-20240521201337-686a1a2994c1 // indirect
107+
golang.org/x/crypto v0.31.0 // indirect
108+
golang.org/x/exp v0.0.0-20241210194714-1829a127f884 // indirect
109+
golang.org/x/net v0.32.0 // indirect
110+
golang.org/x/oauth2 v0.24.0 // indirect
111+
golang.org/x/sync v0.10.0 // indirect
112+
golang.org/x/sys v0.28.0 // indirect
113+
golang.org/x/term v0.27.0 // indirect
114+
golang.org/x/text v0.21.0 // indirect
115+
golang.org/x/time v0.8.0 // indirect
116+
google.golang.org/protobuf v1.35.2 // indirect
117+
gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
72118
gopkg.in/inf.v0 v0.9.1 // indirect
73119
gopkg.in/yaml.v2 v2.4.0 // indirect
74120
gopkg.in/yaml.v3 v3.0.1 // indirect
75-
k8s.io/api v0.28.4 // indirect
76-
k8s.io/apimachinery v0.28.4 // indirect
77-
k8s.io/client-go v0.28.4 // indirect
78-
k8s.io/klog/v2 v2.100.1 // indirect
79-
k8s.io/kube-openapi v0.0.0-20230717233707-2695361300d9 // indirect
80-
k8s.io/utils v0.0.0-20230406110748-d93618cff8a2 // indirect
81-
sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
82-
sigs.k8s.io/structured-merge-diff/v4 v4.2.3 // indirect
83-
sigs.k8s.io/yaml v1.3.0 // indirect
121+
k8s.io/api v0.32.0 // indirect
122+
k8s.io/apimachinery v0.32.0 // indirect
123+
k8s.io/client-go v0.32.0 // indirect
124+
k8s.io/klog/v2 v2.130.1 // indirect
125+
k8s.io/kube-openapi v0.0.0-20241212222426-2c72e554b1e7 // indirect
126+
k8s.io/utils v0.0.0-20241210054802-24370beab758 // indirect
127+
sigs.k8s.io/json v0.0.0-20241014173422-cfa47c3a1cc8 // indirect
128+
sigs.k8s.io/structured-merge-diff/v4 v4.5.0 // indirect
129+
sigs.k8s.io/yaml v1.4.0 // indirect
84130
)
131+
132+
replace github.com/imdario/mergo => github.com/imdario/mergo v0.3.16

0 commit comments

Comments
 (0)