fix(deps): update module github.com/kubescape/kubevuln to v0.3.25 (#47) #36

Workflow file for this run

.github/workflows/release.yaml at 94ab793

	name: Release

	on:
	push:
	branches:
	- main
	- '[0-9]+.[0-9]+.x'
	workflow_dispatch:

	env:
	REGISTRY: quay.io
	GITHUB_PAGES_BRANCH: gh_pages

	defaults:
	run:
	shell: bash

	jobs:
	release-please:
	permissions:
	contents: write # for google-github-actions/release-please-action to create release commit
	pull-requests: write # for google-github-actions/release-please-action to create release PR
	runs-on: [self-hosted, Linux, X64, validator]
	outputs:
	releases_created: ${{ steps.release.outputs.releases_created }}
	tag_name: ${{ steps.release.outputs.tag_name }}
	# Release-please creates a PR that tracks all changes
	steps:
	- name: Checkout
	uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4

	- uses: googleapis/release-please-action@f3969c04a4ec81d7a9aa4010d84ae6a7602f86a7 # v4
	id: release
	with:
	token: ${{secrets.PAT}}

	release-charts:
	needs: release-please
	permissions:
	contents: write
	runs-on: [self-hosted, Linux, X64, validator]
	if: needs.release-please.outputs.releases_created == 'true'
	steps:
	- uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4
	- name: Publish Helm chart
	uses: stefanprodan/helm-gh-pages@master
	with:
	token: ${{ secrets.PAT }}
	charts_dir: chart
	owner: validator-labs
	branch: ${{ env.GITHUB_PAGES_BRANCH }}
	commit_username: validator-labs-bot
	commit_email: bot@noreply.validator-labs.io

	build-container:
	if: needs.release-please.outputs.releases_created == 'true'
	needs:
	- release-please
	runs-on: [self-hosted, Linux, X64, validator]
	permissions:
	contents: write
	packages: write
	id-token: write
	env:
	IMAGE_TAG: quay.io/validator-labs/validator-plugin-kubescape:${{ needs.release-please.outputs.tag_name }}
	IMAGE_NAME: validator-plugin-kubescape
	steps:
	- name: Checkout
	uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4
	with:
	submodules: recursive

	- name: Set up Docker Buildx
	id: buildx
	uses: docker/setup-buildx-action@d70bba72b1f3fd22344832f00baa16ece964efeb # v3

	- name: Login to GitHub Container Registry
	uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3
	with:
	registry: "quay.io"
	username: ${{ secrets.QUAY_USER }}
	password: ${{ secrets.QUAY_TOKEN }}

	- name: Build Docker Image
	uses: docker/build-push-action@2cdde995de11925a030ce8070c3d77a52ffcf1c0 # v5
	with:
	context: .
	file: ./Dockerfile
	platforms: linux/amd64,linux/arm64
	target: production
	tags: \|
	${{ env.IMAGE_TAG }}
	builder: ${{ steps.buildx.outputs.name }}
	push: true
	cache-from: type=gha,scope=${{ github.ref_name }}-${{ env.IMAGE_TAG }}
	cache-to: type=gha,scope=${{ github.ref_name }}-${{ env.IMAGE_TAG }}

	- name: Generate SBOM
	uses: anchore/sbom-action@e8d2a6937ecead383dfe75190d104edd1f9c5751 # v0.16.0
	with:
	image: ${{ env.IMAGE_TAG }}
	artifact-name: sbom-${{ env.IMAGE_NAME }}
	output-file: ./sbom-${{ env.IMAGE_NAME }}.spdx.json

	- name: Attach SBOM to release
	uses: softprops/action-gh-release@69320dbe05506a9a39fc8ae11030b214ec2d1f87 # v2
	with:
	tag_name: ${{ needs.release-please.outputs.tag_name }}
	files: ./sbom-${{ env.IMAGE_NAME }}.spdx.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix(deps): update module github.com/kubescape/kubevuln to v0.3.25 (#47) #36

Workflow file

fix(deps): update module github.com/kubescape/kubevuln to v0.3.25 (#47) #36

Jobs

Run details

Workflow file for this run