lysann/trmnl-bring-plugin
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Update docker-publish.yml

Browse source 
trigger on main pushes and skip attestation.
This commit is contained in:
Yashar Dabiran 2025-02-12 01:13:51 -05:00 committed by GitHub
parent 0e3df75d56
commit 93fa76025e
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 1 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

10
.github/workflows/docker-publish.yml vendored
View file

@ -4,7 +4,7 @@ name: Docker build and publish
# Configures this workflow to run every time a change is pushed to the branch called `release`.
on:
push:
branches: ['release']
branches: ['main']
# Defines two custom environment variables for the workflow. These are used for the Container registry domain, and a name for the Docker image that this workflow builds.
env:
@ -50,11 +50,3 @@ jobs:
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
# This step generates an artifact attestation for the image, which is an unforgeable statement about where and how it was built. It increases supply chain security for people who consume the image. For more information, see [Using artifact attestations to establish provenance for builds](/actions/security-guides/using-artifact-attestations-to-establish-provenance-for-builds).
- name: Generate artifact attestation
uses: actions/attest-build-provenance@v2
with:
subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME}}
subject-digest: ${{ steps.push.outputs.digest }}
push-to-registry: true