From 73fd4f6821fe70bf60a06e0f9af2dc7e453c0fae Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Vojt=C4=9Bch=20Mare=C5=A1?= Date: Mon, 8 Sep 2025 22:25:48 +0200 Subject: [PATCH] ci(release.yaml): fix sign-next MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Vojtěch Mareš --- .woodpecker/release.yaml | 28 +++++++++++++++------------- 1 file changed, 15 insertions(+), 13 deletions(-) diff --git a/.woodpecker/release.yaml b/.woodpecker/release.yaml index 4bd1d16..89e52a9 100644 --- a/.woodpecker/release.yaml +++ b/.woodpecker/release.yaml @@ -44,26 +44,28 @@ steps: when: event: tag - setup-cosign-key: - image: alpine + sign-next: + image: *container_tools_image environment: + COSIGN_PASSWORD: "" # testing, so empty password is OK COSIGN_KEY: from_secret: cosign_key commands: - echo $COSIGN_KEY > ./cosign.key - - sign-next: - image: *container_tools_image - commands: - cosign sign --key ./cosign.key --recursive registry.mareshq.com/woodpecker-plugins/cosign-sign:next when: event: push branch: main - sign-tag: - image: *container_tools_image - commands: - - cosign sign --key ./cosign.key --recursive registry.mareshq.com/woodpecker-plugins/cosign-sign:latest - - cosign sign --key ./cosign.key --recursive registry.mareshq.com/woodpecker-plugins/cosign-sign:${CI_COMMIT_TAG} - when: - event: tag + # sign-tag: + # image: *container_tools_image + # environment: + # COSIGN_PASSWORD: "" # testing, so empty password is OK + # COSIGN_KEY: + # from_secret: cosign_key + # commands: + # - echo $COSIGN_KEY > ./cosign.key + # - cosign sign --key ./cosign.key --recursive registry.mareshq.com/woodpecker-plugins/cosign-sign:latest + # - cosign sign --key ./cosign.key --recursive registry.mareshq.com/woodpecker-plugins/cosign-sign:$${CI_COMMIT_TAG} + # when: + # event: tag