Skip to content

Commit 49e0c14

Browse files
committed
testing
Signed-off-by: Jonathan Gonzalez V <[email protected]>
1 parent d1989b0 commit 49e0c14

File tree

1 file changed

+2
-4
lines changed

1 file changed

+2
-4
lines changed

.github/workflows/bake.yaml

+2-4
Original file line numberDiff line numberDiff line change
@@ -26,6 +26,7 @@ jobs:
2626
contents: read
2727
packages: write
2828
security-events: write
29+
id-token: read
2930
outputs:
3031
metadata: ${{ steps.build.outputs.metadata }}
3132
images: ${{ steps.images.outputs.images }}
@@ -73,13 +74,10 @@ jobs:
7374
- name: Check Cosign install
7475
run: cosign version
7576
- name: Sign images using Cosing
76-
env:
77-
COSIGN_PRIVATE_KEY: ${{ secrets.COSIGN_PRIVATE_KEY }}
78-
COSIGN_PASSWORD: ${{ secrets.COSIGN_PASSWORD }}
7977
run: |
8078
images=""
8179
images=$(echo '${{ steps.build.outputs.metadata }}' | jq -r '.[] | "\(.["image.name"]) \(.["containerimage.digest"])"' | awk -F' ' '{split($1, a, ","); for(i in a) print a[i] "@" $2}' | tr '\n' ' ')
82-
cosign sign --yes --key env://COSIGN_PRIVATE_KEY ${images}
80+
cosign sign --yes ${images}
8381
8482
security:
8583
name: Security checks

0 commit comments

Comments
 (0)