mirror of
https://github.com/sysadminsmedia/homebox.git
synced 2025-12-21 21:33:02 +01:00
Try keyless signing for blobs
This commit is contained in:
Matthew Kilgore
@@ -43,11 +43,14 @@ signs:
|
|||||||
stdin: "{{ .Env.COSIGN_PWD }}"
|
stdin: "{{ .Env.COSIGN_PWD }}"
|
||||||
args:
|
args:
|
||||||
- "sign-blob"
|
- "sign-blob"
|
||||||
- "--key=cosign.key"
|
- "--output-certificate=${certificate}"
|
||||||
- "--output-signature=${signature}"
|
- "--output-signature=${signature}"
|
||||||
- "${artifact}"
|
- "${artifact}"
|
||||||
- "--yes" # needed on cosign 2.0.0+
|
- "--yes" # needed on cosign 2.0.0+
|
||||||
artifacts: all
|
artifacts: all
|
||||||
|
output:
|
||||||
|
signature: "${artifact}.sig"
|
||||||
|
certificate: "${artifact}.pem"
|
||||||
|
|
||||||
archives:
|
archives:
|
||||||
- formats: [ 'tar.gz' ]
|
- formats: [ 'tar.gz' ]
|
||||||
|
|||||||
Reference in New Issue
Block a user