Skip to content

Commit

Permalink
gha: retrofit DOCKER_CONTENT_TRUST to build.yml
Browse files Browse the repository at this point in the history
  • Loading branch information
@vszakats
vszakats committed Sep 29, 2023
1 parent 59171e2 commit 73bfe43
Showing 1 changed file with 7 additions and 0 deletions.
7 changes: 7 additions & 0 deletions .github/workflows/build.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,7 @@ env:
CW_MAP: '1'
CW_JOBS: '3'
DO_NOT_TRACK: '1'
DOCKER_CONTENT_TRUST: '1'

jobs:
linux:
Expand All @@ -27,6 +28,7 @@ jobs:
export CW_CONFIG='${{ github.ref_name }}-linux'
export CW_REVISION='${{ github.sha }}'
. ./_versions.sh
docker trust inspect --pretty "${DOCKER_IMAGE}"
time docker pull "${DOCKER_IMAGE}"
docker images --digests
time docker run --volume "$(pwd):$(pwd)" --workdir "$(pwd)" \
Expand Down Expand Up @@ -54,6 +56,7 @@ jobs:
export CW_CONFIG='${{ github.ref_name }}-linux-musl'
export CW_REVISION='${{ github.sha }}'
. ./_versions.sh
docker trust inspect --pretty "${DOCKER_IMAGE}"
time docker pull "${DOCKER_IMAGE}"
docker images --digests
time docker run --volume "$(pwd):$(pwd)" --workdir "$(pwd)" \
Expand Down Expand Up @@ -82,6 +85,7 @@ jobs:
export CW_REVISION='${{ github.sha }}'
DOCKER_IMAGE='debian:bookworm'
export CW_CCSUFFIX='-15'
docker trust inspect --pretty "${DOCKER_IMAGE}"
time docker pull "${DOCKER_IMAGE}"
docker images --digests
time docker run --volume "$(pwd):$(pwd)" --workdir "$(pwd)" \
Expand Down Expand Up @@ -110,6 +114,7 @@ jobs:
export CW_REVISION='${{ github.sha }}'
DOCKER_IMAGE='debian:bullseye'
export CW_CCSUFFIX='-13'
docker trust inspect --pretty "${DOCKER_IMAGE}"
time docker pull "${DOCKER_IMAGE}"
docker images --digests
time docker run --volume "$(pwd):$(pwd)" --workdir "$(pwd)" \
Expand Down Expand Up @@ -137,6 +142,7 @@ jobs:
export CW_CONFIG='${{ github.ref_name }}-linux'
export CW_REVISION='${{ github.sha }}'
DOCKER_IMAGE='alpine:latest'
docker trust inspect --pretty "${DOCKER_IMAGE}"
time docker pull "${DOCKER_IMAGE}"
docker images --digests
time docker run --volume "$(pwd):$(pwd)" --workdir "$(pwd)" \
Expand Down Expand Up @@ -209,6 +215,7 @@ jobs:
export CW_CONFIG='${{ github.ref_name }}-win'
export CW_REVISION='${{ github.sha }}'
. ./_versions.sh
docker trust inspect --pretty "${DOCKER_IMAGE}"
time docker pull "${DOCKER_IMAGE}"
docker images --digests
time docker run --volume "$(pwd):$(pwd)" --workdir "$(pwd)" \
Expand Down

0 comments on commit 73bfe43

Please sign in to comment.