mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-07 00:17:13 +00:00
Code Activity
kyverno/.github/workflows/image.yaml
Sambhav Kothari 8ddfcacd79
Fix permissions for image publish workflows (#3021) 
All of the jobs in this workflow use the same set of permissions and this workflow is only run on pushes to master. Adding the appropriate permissions to read repository contents, publish packages and ID token for cosign.

Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com>
2022-01-19 11:39:51 +00:00

44 lines
1.1 KiB
YAML
Raw Blame History

name: image
on:
push:
branches:
- 'main'
permissions:
contents: read
packages: write
id-token: write
jobs:
push-init-kyverno:
uses: kyverno/kyverno/.github/workflows/reuse.yaml@main
with:
publish_command: docker-publish-initContainer-dev
digest_command: docker-get-initContainer-dev-digest
image_name: kyvernopre
tag: image
secrets:
registry_username: ${{ github.actor }}
registry_password: ${{ secrets.CR_PAT }}
push-kyverno:
uses: kyverno/kyverno/.github/workflows/reuse.yaml@main
with:
publish_command: docker-publish-kyverno-dev
digest_command: docker-get-kyverno-dev-digest
image_name: kyverno
tag: image
secrets:
registry_username: ${{ github.actor }}
registry_password: ${{ secrets.CR_PAT }}
push-kyverno-cli:
uses: kyverno/kyverno/.github/workflows/reuse.yaml@main
with:
publish_command: docker-publish-cli-dev
digest_command: docker-get-cli-dev-digest
image_name: kyverno-cli
tag: image
secrets:
registry_username: ${{ github.actor }}
registry_password: ${{ secrets.CR_PAT }}
View git blame Copy permalink