From 92b73a9e3680d5162fcd2c0b4c3b1335c429f3d5 Mon Sep 17 00:00:00 2001 From: John Kjell Date: Tue, 31 Oct 2023 10:38:27 -0500 Subject: [PATCH] Fix attestor name Signed-off-by: John Kjell --- .github/workflows/pipeline.yml | 22 +++++++++++----------- 1 file changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/pipeline.yml b/.github/workflows/pipeline.yml index ef667ac..3c44d11 100644 --- a/.github/workflows/pipeline.yml +++ b/.github/workflows/pipeline.yml @@ -16,7 +16,7 @@ jobs: with: pull_request: ${{ github.event_name == 'pull_request' }} step: fmt - attestations: "git github env" + attestations: "git github environment" command: go fmt ./... vet: @@ -24,7 +24,7 @@ jobs: with: pull_request: ${{ github.event_name == 'pull_request' }} step: vet - attestations: "git github env" + attestations: "git github environment" command: go vet ./... lint: @@ -32,7 +32,7 @@ jobs: with: pull_request: ${{ github.event_name == 'pull_request' }} step: lint - attestations: "git github env" + attestations: "git github environment" pre-command: | curl -sSfL https://github.com/hadolint/hadolint/releases/download/v2.12.0/hadolint-Linux-x86_64 -o /usr/local/bin/hadolint && \ chmod +x /usr/local/bin/hadolint @@ -46,7 +46,7 @@ jobs: with: pull_request: ${{ github.event_name == 'pull_request' }} step: unit-test - attestations: "git github env" + attestations: "git github environment" command: go test ./... -coverprofile cover.out artifact-upload-name: cover.out artifact-upload-path: cover.out @@ -57,7 +57,7 @@ jobs: with: pull_request: ${{ github.event_name == 'pull_request' }} step: sast - attestations: "git github env" + attestations: "git github environment" pre-command: python3 -m pip install semgrep==1.45.0 command: semgrep scan --config auto ./ --sarif -o semgrep.sarif artifact-upload-name: semgrep.sarif @@ -69,7 +69,7 @@ jobs: with: pull_request: ${{ github.event_name == 'pull_request' }} step: build - attestations: "git github env" + attestations: "git github environment" command: go build -o bin/software main.go build-image: @@ -84,7 +84,7 @@ jobs: uses: testifysec/witness-run-action@40aa4ef36fc431a37de7c3faebcb66513c03b934 with: step: build-image - attestations: "git github env oci" + attestations: "git github environment oci" command: | /bin/sh -c "docker build -t jkjell/software:dev . && docker save jkjell/software:dev > image.tar" @@ -100,7 +100,7 @@ jobs: with: pull_request: ${{ github.event_name == 'pull_request' }} step: generate-sbom - attestations: "git github env" + attestations: "git github environment" artifact-download: image.tar pre-command: | curl -sSfL https://raw.githubusercontent.com/anchore/syft/main/install.sh | sh -s -- -b /usr/local/bin @@ -115,7 +115,7 @@ jobs: with: pull_request: ${{ github.event_name == 'pull_request' }} step: cve-scan - attestations: "git github env" + attestations: "git github environment" artifact-download: image.tar pre-command: | curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin @@ -130,7 +130,7 @@ jobs: with: pull_request: ${{ github.event_name == 'pull_request' }} step: secret-scan - attestations: "git github env" + attestations: "git github environment" artifact-download: image.tar pre-command: | curl -sSfL https://raw.githubusercontent.com/trufflesecurity/trufflehog/main/scripts/install.sh | sh -s -- -b /usr/local/bin @@ -147,7 +147,7 @@ jobs: with: pull_request: ${{ github.event_name == 'pull_request' }} step: verify - attestations: "git github env" + attestations: "git github environment" artifact-download: image.tar pre-command: | curl -sSfL https://github.com/testifysec/witness/releases/download/v0.1.14/witness_0.1.14_linux_amd64.tar.gz -o witness.tar.gz && \