-
Notifications
You must be signed in to change notification settings - Fork 3
/
.goreleaser.yml
136 lines (122 loc) · 3.96 KB
/
.goreleaser.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
before:
hooks:
- go mod download
builds:
- main: ./cmd/strongbox
env:
- CGO_ENABLED=0
goos:
- darwin
- linux
- windows
goarch:
- 386
- amd64
- arm64
flags:
- -trimpath
ignore:
- goos: darwin
goarch: 386
archives:
- name_template: '{{ .ProjectName }}_{{ .Tag }}_{{ .Os }}_{{ .Arch }}'
format_overrides:
- goos: windows
format: zip
nfpms:
- maintainer: &author Maxime VISONNEAU <maxime.visonneau@gmail.com>
description: &description Safely manage Hashicorp Vault secrets at rest
license: &license Apache-2.0
homepage: &homepage https://github.com/mvisonneau/strongbox
vendor: *author
file_name_template: '{{ .ProjectName }}_{{ .Tag }}_{{ .Os }}_{{ .Arch }}'
formats:
- deb
- rpm
brews:
- description: *description
homepage: *homepage
folder: Formula
tap:
owner: mvisonneau
name: homebrew-tap
scoop:
description: *description
homepage: *homepage
license: *license
bucket:
owner: mvisonneau
name: scoops
snapcrafts:
- name: strongbox
summary: *description
description: Manage Vault secrets as you manage other resources
license: *license
grade: stable
apps:
strongbox:
plugs: [home, network]
dockers:
- image_templates:
- 'docker.io/mvisonneau/strongbox:{{ .Tag }}-amd64'
- 'ghcr.io/mvisonneau/strongbox:{{ .Tag }}-amd64'
- 'quay.io/mvisonneau/strongbox:{{ .Tag }}-amd64'
ids: [strongbox]
goarch: amd64
use_buildx: true
build_flag_templates:
- --platform=linux/amd64
- --label=org.opencontainers.image.title={{ .ProjectName }}
- --label=org.opencontainers.image.description={{ .ProjectName }}
- --label=org.opencontainers.image.url=https://github.com/mvisonneau/strongbox
- --label=org.opencontainers.image.source=https://github.com/mvisonneau/strongbox
- --label=org.opencontainers.image.version={{ .Version }}
- --label=org.opencontainers.image.created={{ time "2006-01-02T15:04:05Z07:00" }}
- --label=org.opencontainers.image.revision={{ .FullCommit }}
- --label=org.opencontainers.image.licenses=Apache-2.0
- image_templates:
- 'docker.io/mvisonneau/strongbox:{{ .Tag }}-arm64'
- 'ghcr.io/mvisonneau/strongbox:{{ .Tag }}-arm64'
- 'quay.io/mvisonneau/strongbox:{{ .Tag }}-arm64'
ids: [strongbox]
goarch: arm64
use_buildx: true
build_flag_templates:
- --platform=linux/arm64
- --label=org.opencontainers.image.title={{ .ProjectName }}
- --label=org.opencontainers.image.description={{ .ProjectName }}
- --label=org.opencontainers.image.url=https://github.com/mvisonneau/strongbox
- --label=org.opencontainers.image.source=https://github.com/mvisonneau/strongbox
- --label=org.opencontainers.image.version={{ .Version }}
- --label=org.opencontainers.image.created={{ time "2006-01-02T15:04:05Z07:00" }}
- --label=org.opencontainers.image.revision={{ .FullCommit }}
- --label=org.opencontainers.image.licenses=Apache-2.0
docker_manifests:
- name_template: docker.io/mvisonneau/strongbox:{{ .Tag }}
image_templates:
- docker.io/mvisonneau/strongbox:{{ .Tag }}-amd64
- docker.io/mvisonneau/strongbox:{{ .Tag }}-arm64
- name_template: ghcr.io/mvisonneau/strongbox:{{ .Tag }}
image_templates:
- ghcr.io/mvisonneau/strongbox:{{ .Tag }}-amd64
- ghcr.io/mvisonneau/strongbox:{{ .Tag }}-arm64
- name_template: quay.io/mvisonneau/strongbox:{{ .Tag }}
image_templates:
- quay.io/mvisonneau/strongbox:{{ .Tag }}-amd64
- quay.io/mvisonneau/strongbox:{{ .Tag }}-arm64
checksum:
name_template: '{{ .ProjectName }}_{{ .Tag }}_sha512sums.txt'
algorithm: sha512
signs:
- artifacts: checksum
args:
[
'-u',
'C09CA9F71C5C988E65E3E5FCADEA38EDC46F25BE',
'--output',
'${signature}',
'--detach-sign',
'${artifact}',
]
changelog:
skip: true