Skip to content

Commit 53eb1a3

Browse files
UMMAN2005UMMAN2005
committed
2 parents dfac454 + adffb3f commit 53eb1a3

File tree

4 files changed

+16
-14
lines changed

4 files changed

+16
-14
lines changed

.github/workflows/ci.yaml

Lines changed: 12 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -9,7 +9,7 @@ permissions:
99
contents: read
1010
pull-requests: write
1111
jobs:
12-
test:
12+
test-code:
1313
runs-on: ubuntu-latest
1414
steps:
1515
- name: checkout code in current PR branch
@@ -36,6 +36,15 @@ jobs:
3636
run: go install github.com/google/addlicense@dc31ac9ffcca99c9457226366135701794b128c0
3737
- name: Check licenses
3838
run: addlicense -l apache -check -v -ignore '**/*.yaml' -c 'The Score Authors' ./cmd ./internal/
39+
test-container:
40+
runs-on: ubuntu-latest
41+
environment: ci-pr
42+
if: ${{ !github.event.pull_request.head.repo.fork }}
43+
steps:
44+
- name: checkout code in current PR branch
45+
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
46+
with:
47+
fetch-depth: 0
3948
- name: Set up Docker
4049
uses: docker/setup-docker-action@e61617a16c407a86262fb923c35a616ddbe070b3 # v4.6.0
4150
with:
@@ -49,10 +58,11 @@ jobs:
4958
- name: docker login
5059
uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
5160
with:
61+
registry: docker.io
5262
username: ${{ secrets.DOCKER_HUB_USERNAME }}
5363
password: ${{ secrets.DOCKER_HUB_TOKEN }}
5464
- name: Set up Docker Buildx
55-
uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
65+
uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3.12.0
5666
- name: Build container image from PR branch
5767
uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 # v6.18.0
5868
with:
@@ -102,12 +112,3 @@ jobs:
102112
docker run --rm score-compose:pr-${{ github.event.number }} --version
103113
docker run -v .:/score-compose --rm score-compose:pr-${{ github.event.number }} init
104114
cat score.yaml
105-
106-
107-
108-
109-
110-
111-
112-
113-

.github/workflows/release.yaml

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -37,7 +37,7 @@ jobs:
3737
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
3838
TAP_GITHUB_TOKEN: ${{ secrets.TAP_GITHUB_TOKEN }}
3939
- name: Set up Docker Buildx
40-
uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
40+
uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3.12.0
4141
- name: Login to Docker Hub
4242
uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
4343
with:
@@ -68,3 +68,4 @@ jobs:
6868
- name: Sign container image
6969
run: |
7070
cosign sign --yes ghcr.io/score-spec/score-compose@${{ steps.build-push-container.outputs.digest }}
71+
cosign sign --yes scorespec/score-compose@${{ steps.build-push-container.outputs.digest }}

.github/workflows/scorecard.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -68,6 +68,6 @@ jobs:
6868
# Upload the results to GitHub's code scanning dashboard (optional).
6969
# Commenting out will disable upload of results to your repo's Code Scanning dashboard
7070
- name: "Upload to code-scanning"
71-
uses: github/codeql-action/upload-sarif@1b168cd39490f61582a9beae412bb7057a6b2c4e # v4.31.8
71+
uses: github/codeql-action/upload-sarif@5d4e8d1aca955e8d8589aabd499c5cae939e33c7 # v4.31.9
7272
with:
7373
sarif_file: results.sarif

Dockerfile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,4 +1,4 @@
1-
FROM golang:1.25.5-alpine@sha256:26111811bc967321e7b6f852e914d14bede324cd1accb7f81811929a6a57fea9 AS builder
1+
FROM golang:1.25.5-alpine@sha256:ac09a5f469f307e5da71e766b0bd59c9c49ea460a528cc3e6686513d64a6f1fb AS builder
22

33
ARG VERSION=0.0.0
44

0 commit comments

Comments
 (0)