From a50e24a869c08c2929ef307e56ce5f1317e1ed55 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Przemys=C5=82aw=20Romanik?= <46846000+rom4nik@users.noreply.github.com> Date: Thu, 18 May 2023 01:13:15 +0200 Subject: [PATCH] Remove cosign --- .github/workflows/cicd.yml | 18 +----------------- 1 file changed, 1 insertion(+), 17 deletions(-) diff --git a/.github/workflows/cicd.yml b/.github/workflows/cicd.yml index 6727b55..76e79a5 100644 --- a/.github/workflows/cicd.yml +++ b/.github/workflows/cicd.yml @@ -2,7 +2,7 @@ name: CI/CD on: push: - tags: [ 'v*.*.*' ] + tags: [ 'v*' ] env: # Use docker.io for Docker Hub if empty @@ -16,15 +16,10 @@ jobs: permissions: contents: read packages: write - # This is used to complete the identity challenge - # with sigstore/fulcio when running outside of PRs. - id-token: write steps: - name: Checkout repository uses: actions/checkout@v3 - - name: Install cosign - uses: sigstore/cosign-installer@v3 - name: Log into registry ${{ env.REGISTRY }} uses: docker/login-action@v2 with: @@ -44,14 +39,3 @@ jobs: push: true tags: ${{ steps.meta.outputs.tags }} labels: ${{ steps.meta.outputs.labels }} - # Sign the resulting Docker image digest. - # This will only write to the public Rekor transparency log when the Docker - # repository is public to avoid leaking data. If you would like to publish - # transparency data even for private images, pass --force to cosign below. - # https://github.com/sigstore/cosign - - name: Sign the published Docker image - env: - COSIGN_EXPERIMENTAL: "true" - # This step uses the identity token to provision an ephemeral certificate - # against the sigstore community Fulcio instance. - run: echo "${{ steps.meta.outputs.tags }}" | xargs -I {} cosign sign {}@${{ steps.build-and-push.outputs.digest }}