Prepare release #6
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: release | |
| on: | |
| push: | |
| tags: | |
| - 'v[0-9]+\.[0-9]+\.[0-9]+' | |
| jobs: | |
| goreleaser: | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: write | |
| steps: | |
| - uses: actions/checkout@v3 | |
| with: | |
| fetch-depth: 0 | |
| - uses: ./.github/actions/build | |
| - run: make clean | |
| shell: bash | |
| - name: Import GPG key | |
| # This is a third-party GitHub action and we trust it with our GPG key. | |
| # To be on the safer side, we should always pin to the commit SHA. | |
| # It's not a perfect mitigation, but we should always do some due diligence before upgrading. | |
| # The author seems trustworthy, as the author is part of the docker and goreleaser organizations on GitHub. | |
| uses: crazy-max/ghaction-import-gpg@72b6676b71ab476b77e676928516f6982eef7a41 | |
| with: | |
| gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }} | |
| passphrase: ${{ secrets.GPG_PASSPHRASE }} | |
| - uses: ./go.mk/.github/actions/release | |
| with: | |
| release_github_token: ${{ secrets.GITHUB_TOKEN }} | |
| registry_username: ${{ secrets.DOCKERHUB_USERNAME }} | |
| registry_password: ${{ secrets.DOCKERHUB_TOKEN }} |