Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

update release images to use go1.19.2 and cosign v1.12.1 #2315

Merged
merged 2 commits into from Oct 7, 2022
Merged

update release images to use go1.19.2 and cosign v1.12.1 #2315

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
9d38dcb
update release images to use go1.19.2 and cosign v1.12.1
cpanato Oct 6, 2022
4012377
update cc/cxx for darwvin arm64
cpanato Oct 6, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
4 changes: 2 additions & 2 deletions .github/workflows/validate-release.yml
View file
Open in desktop
Expand Up @@ -39,8 +39,8 @@ jobs:
statuses: none

env:
CROSS_BUILDER_IMAGE: ghcr.io/gythialy/golang-cross:v1.19.1-0@sha256:8e4115486c3cc1c3da2b4f576afdc206718f61793854b79a491eb34c52ceed1a
COSIGN_IMAGE: gcr.io/projectsigstore/cosign:v1.11.1@sha256:f9fd5a287a67f4b955d08062a966df10f9a600b6b8583fd367bce3f1f000a429
CROSS_BUILDER_IMAGE: ghcr.io/gythialy/golang-cross:v1.19.2-0@sha256:4b91749aff1a230102cf371c749b2b42e8bfdfa82522845c64c2c98245c7d21e
COSIGN_IMAGE: gcr.io/projectsigstore/cosign:v1.12.1@sha256:ac8e08a2141e093f4fd7d1d0b05448804eb3771b66574b13ad73e31b460af64d

steps:
- uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
Expand Down
8 changes: 4 additions & 4 deletions release/cloudbuild.yaml
View file
Open in desktop
Expand Up @@ -32,17 +32,17 @@ steps:
echo "Checking out ${_GIT_TAG}"
git checkout ${_GIT_TAG}

- name: 'gcr.io/projectsigstore/cosign:v1.11.1@sha256:f9fd5a287a67f4b955d08062a966df10f9a600b6b8583fd367bce3f1f000a429'
- name: 'gcr.io/projectsigstore/cosign:v1.12.1@sha256:ac8e08a2141e093f4fd7d1d0b05448804eb3771b66574b13ad73e31b460af64d'
dir: "go/src/sigstore/cosign"
env:
- COSIGN_EXPERIMENTAL=true
- TUF_ROOT=/tmp
args:
- 'verify'
- 'ghcr.io/gythialy/golang-cross:v1.19.1-0@sha256:8e4115486c3cc1c3da2b4f576afdc206718f61793854b79a491eb34c52ceed1a'
- 'ghcr.io/gythialy/golang-cross:v1.19.2-0@sha256:4b91749aff1a230102cf371c749b2b42e8bfdfa82522845c64c2c98245c7d21e'

# maybe we can build our own image and use that to be more in a safe side
- name: ghcr.io/gythialy/golang-cross:v1.19.1-0@sha256:8e4115486c3cc1c3da2b4f576afdc206718f61793854b79a491eb34c52ceed1a
- name: ghcr.io/gythialy/golang-cross:v1.19.2-0@sha256:4b91749aff1a230102cf371c749b2b42e8bfdfa82522845c64c2c98245c7d21e
entrypoint: /bin/sh
dir: "go/src/sigstore/cosign"
env:
Expand All @@ -65,7 +65,7 @@ steps:
gcloud auth configure-docker \
&& make release

- name: ghcr.io/gythialy/golang-cross:v1.19.1-0@sha256:8e4115486c3cc1c3da2b4f576afdc206718f61793854b79a491eb34c52ceed1a
- name: ghcr.io/gythialy/golang-cross:v1.19.2-0@sha256:4b91749aff1a230102cf371c749b2b42e8bfdfa82522845c64c2c98245c7d21e
entrypoint: 'bash'
dir: "go/src/sigstore/cosign"
env:
Expand Down