diff --git a/.github/workflows/image-make-and-publish.yml b/.github/workflows/image-make-and-publish.yml index 6b827d5..942d9ee 100644 --- a/.github/workflows/image-make-and-publish.yml +++ b/.github/workflows/image-make-and-publish.yml @@ -22,23 +22,19 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Set up Python - uses: actions/setup-python@v2 + uses: actions/setup-python@v5 with: - python-version: '3.8' - - - name: Install cosign - if: github.event_name != 'pull_request' - uses: sigstore/cosign-installer@main + python-version: '3.12' - name: Setup Docker buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Log into registry ${{ env.REGISTRY }} if: github.event_name != 'pull_request' - uses: docker/login-action@v1 + uses: docker/login-action@v3 with: registry: ${{ env.REGISTRY }} username: ${{ github.actor }} @@ -71,7 +67,7 @@ jobs: - name: Build and push Docker image id: build-and-push - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v6 with: context: . build-args: | @@ -80,12 +76,6 @@ jobs: tags: ${{ steps.meta.outputs.tags }} labels: ${{ steps.meta.outputs.labels }} - - name: Sign the published Docker image - if: ${{ github.event_name != 'pull_request' && !github.event.repository.private }} - env: - COSIGN_EXPERIMENTAL: "true" - run: cosign sign ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}@${{ steps.build-and-push.outputs.digest }} - - name: Trigger release job if: ${{ success() && github.ref_name == 'main' && github.event_name != 'pull_request' && !github.event.repository.private }} uses: toptal/jenkins-job-trigger-action@master