⚗️ skopeo reorder and ssh

Yoan Moscatelli · Yoan Moscatelli · commit ede3f85d6a92 · 2025-03-26T12:54:46.000Z
diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
@@ -62,20 +62,20 @@ jobs:
         password: ${{ secrets.GITHUB_TOKEN }}
     defaults:
       run:
-        shell: bash
+        shell: zsh
     outputs:
       artifact-name: ${{ steps.upload.outputs.name }}
       artifact-link: ${{ steps.upload.outputs.link }}
     steps:
-      - name: "Debug: SSH to runner"
-        uses: scality/actions/action-ssh-to-runner@1.5.0
+      - name: Checkout
+        uses: actions/checkout@v4
         with:
-          tmate-server-host: ${{ secrets.TMATE_SERVER_HOST }}
-          tmate-server-port: ${{ secrets.TMATE_SERVER_PORT }}
-          tmate-server-rsa-fingerprint: ${{ secrets.TMATE_SERVER_RSA_FINGERPRINT }}
-          tmate-server-ed25519-fingerprint: ${{ secrets.TMATE_SERVER_ED25519_FINGERPRINT }}
-        timeout-minutes: 30
-        if: always()
+          ref: ${{ inputs.ref }}
+          # NOTE: We fetch depth so that we can put the right `GIT` reference
+          # in the product.txt
+          fetch-depth: 0
+      - name: Set safe directory (since container is root and not user 1001)
+        run: git config --global --add safe.directory ${{ github.workspace }}
       - name: show skopeo version
         run: skopeo --version
       - name: Pull Fluent Bit image before authentication
@@ -114,25 +114,25 @@ jobs:
           skopeo --debug inspect docker://cr.fluentbit.io/fluent/fluent-bit:3.2.8
       - name: manual pull with credentials
         if: always()
-        run: skopeo --debug --override-os linux --insecure-policy copy --retry-times 5 --retry-delay 20s --src-username ${{ secrets.DOCKERHUB_LOGIN }} --src-password ${{ secrets.DOCKERHUB_PASSWORD }} --format v2s2 docker://cr.fluentbit.io/fluent/fluent-bit:3.2.8 dir:./
+        run: skopeo --debug --override-os linux --insecure-policy copy --retry-times 5 --retry-delay 20s --src-username ${{ secrets.DOCKERHUB_LOGIN }} --src-password ${{ secrets.DOCKERHUB_PASSWORD }} --format v2s2 docker://cr.fluentbit.io/fluent/fluent-bit:3.2.8 dir:/tmp
       - name: manual pull with rate limit
         if: always()
-        run: skopeo --debug --override-os linux --insecure-policy copy --retry-times 5 --retry-delay 20s --image-parallel-copies 1 --format v2s2 docker://cr.fluentbit.io/fluent/fluent-bit:3.2.8 dir:./
+        run: skopeo --debug --override-os linux --insecure-policy copy --retry-times 5 --retry-delay 20s --image-parallel-copies 1 --format v2s2 docker://cr.fluentbit.io/fluent/fluent-bit:3.2.8 dir:/tmp
       - name: manual pull with rate limit and credentials
         if: always()
-        run: skopeo --debug --override-os linux --insecure-policy copy --retry-times 5 --retry-delay 20s --image-parallel-copies 1 --src-username ${{ secrets.DOCKERHUB_LOGIN }} --src-password ${{ secrets.DOCKERHUB_PASSWORD }} --format v2s2 docker://cr.fluentbit.io/fluent/fluent-bit:3.2.8 dir:./
+        run: skopeo --debug --override-os linux --insecure-policy copy --retry-times 5 --retry-delay 20s --image-parallel-copies 1 --src-username ${{ secrets.DOCKERHUB_LOGIN }} --src-password ${{ secrets.DOCKERHUB_PASSWORD }} --format v2s2 docker://cr.fluentbit.io/fluent/fluent-bit:3.2.8 dir:/tmp
       - name: manual pull
         if: always()
-        run: skopeo --debug --override-os linux --insecure-policy copy --retry-times 5 --retry-delay 20s --format v2s2 docker://cr.fluentbit.io/fluent/fluent-bit:3.2.8 dir:./
-      - name: Checkout
-        uses: actions/checkout@v4
+        run: skopeo --debug --override-os linux --insecure-policy copy --retry-times 5 --retry-delay 20s --format v2s2 docker://cr.fluentbit.io/fluent/fluent-bit:3.2.8 dir:/tmp
+      - name: "Debug: SSH to runner"
+        uses: scality/actions/action-ssh-to-runner@1.5.0
         with:
-          ref: ${{ inputs.ref }}
-          # NOTE: We fetch depth so that we can put the right `GIT` reference
-          # in the product.txt
-          fetch-depth: 0
-      - name: Set safe directory (since container is root and not user 1001)
-        run: git config --global --add safe.directory ${{ github.workspace }}
+          tmate-server-host: ${{ secrets.TMATE_SERVER_HOST }}
+          tmate-server-port: ${{ secrets.TMATE_SERVER_PORT }}
+          tmate-server-rsa-fingerprint: ${{ secrets.TMATE_SERVER_RSA_FINGERPRINT }}
+          tmate-server-ed25519-fingerprint: ${{ secrets.TMATE_SERVER_ED25519_FINGERPRINT }}
+        timeout-minutes: 30
+        if: always()
       - name: Build everything
         run: cd "${{ github.workspace }}" && ./doit.sh -n 4 --verbosity 2 --failure-verbosity 2
       - name: Prepare artifacts
