build(deps): bump docker/github-builder-experimental/.github/workflows/bake.yml from 7643588149117bf0ca3a906caa3968c70484027a to c767551a26459c30e1f683df73a12fdb918f7068 #370
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: ci | ||
| concurrency: | ||
| group: ${{ github.workflow }}-${{ github.ref }} | ||
| cancel-in-progress: true | ||
| on: | ||
| workflow_dispatch: | ||
| push: | ||
| branches: | ||
| - 'master' | ||
| tags: | ||
| - 'v*' | ||
| pull_request: | ||
| env: | ||
| DOCKERHUB_SLUG: docker/buildkit-syft-scanner | ||
| BUILDX_VERSION: latest | ||
| BUILDKIT_IMAGE: moby/buildkit:latest | ||
| jobs: | ||
| build-prepare: | ||
| runs-on: ubuntu-24.04 | ||
| outputs: | ||
| repo-slug: ${{ env.DOCKERHUB_SLUG }} | ||
| steps: | ||
| # FIXME: can't use env object in reusable workflow inputs: https://github.com/orgs/community/discussions/26671 | ||
| - run: echo "Exposing env vars for reusable workflow" | ||
| build: | ||
| uses: docker/github-builder-experimental/.github/workflows/bake.yml@c767551a26459c30e1f683df73a12fdb918f7068 | ||
|
Check failure on line 31 in .github/workflows/ci.yaml
|
||
| needs: | ||
| - build-prepare | ||
| permissions: | ||
| contents: read # same as global permission | ||
| id-token: write # for signing attestation(s) with GitHub OIDC Token | ||
| with: | ||
| setup-qemu: true | ||
| target: image-all | ||
| cache: true | ||
| cache-scope: image | ||
| output: image | ||
| push: ${{ github.event_name != 'pull_request' }} | ||
| sbom: true | ||
| set-meta-labels: true | ||
| meta-images: | | ||
| ${{ needs.build-prepare.outputs.repo-slug }} | ||
| meta-tags: | | ||
| type=semver,pattern={{version}} | ||
| type=semver,pattern={{major}}.{{minor}} | ||
| type=semver,pattern={{major}} | ||
| type=ref,event=pr | ||
| type=edge | ||
| meta-annotations: | | ||
| org.opencontainers.image.title=BuildKit Syft scanner | ||
| org.opencontainers.image.description=SBOM generation for BuildKit images | ||
| org.opencontainers.image.vendor=Docker Inc. | ||
| meta-bake-target: meta-helper | ||
| secrets: | ||
| registry-auths: | | ||
| - registry: docker.io | ||
| username: ${{ vars.DOCKERPUBLICBOT_USERNAME }} | ||
| password: ${{ secrets.DOCKERPUBLICBOT_WRITE_PAT }} | ||
| dockerhub-readme: | ||
| runs-on: ubuntu-latest | ||
| if: github.event_name != 'pull_request' | ||
| needs: | ||
| - build | ||
| steps: | ||
| - | ||
| name: Checkout | ||
| uses: actions/checkout@v6 | ||
| - | ||
| name: Update repo description | ||
| uses: peter-evans/dockerhub-description@v5 | ||
| with: | ||
| username: ${{ vars.DOCKERPUBLICBOT_USERNAME }} | ||
| password: ${{ secrets.DOCKERPUBLICBOT_DELETE_PAT }} | ||
| repository: ${{ env.DOCKERHUB_SLUG }} | ||
