diff --git a/.devcontainer.json b/.devcontainer.json new file mode 100644 index 0000000..a5aa7c9 --- /dev/null +++ b/.devcontainer.json @@ -0,0 +1,22 @@ +// For format details, see https://aka.ms/devcontainer.json. For config options, see the +// README at: https://github.com/devcontainers/templates/tree/main/src/alpine +{ + "name": "Alpine", + // Or use a Dockerfile or Docker Compose file. More info: https://containers.dev/guide/dockerfile + "image": "mcr.microsoft.com/devcontainers/base:alpine-3.18" + + // Features to add to the dev container. More info: https://containers.dev/features. + // "features": {}, + + // Use 'forwardPorts' to make a list of ports inside the container available locally. + // "forwardPorts": [], + + // Use 'postCreateCommand' to run commands after the container is created. + // "postCreateCommand": "uname -a", + + // Configure tool-specific properties. + // "customizations": {}, + + // Uncomment to connect as root instead. More info: https://aka.ms/dev-containers-non-root. + // "remoteUser": "root" +} diff --git a/.github/workflows/builder.yml b/.github/workflows/builder.yml index 516f476..7394d23 100644 --- a/.github/workflows/builder.yml +++ b/.github/workflows/builder.yml @@ -45,6 +45,10 @@ jobs: name: Build ${{ matrix.arch }} plugin needs: init runs-on: ubuntu-latest + permissions: + contents: read + packages: write + id-token: write strategy: matrix: arch: ${{ fromJson(needs.init.outputs.architectures) }} @@ -52,13 +56,6 @@ jobs: - name: Checkout the repository uses: actions/checkout@v3.5.3 - - name: Login to DockerHub - if: needs.init.outputs.publish == 'true' - uses: docker/login-action@v2.2.0 - with: - username: ${{ secrets.DOCKERHUB_USERNAME }} - password: ${{ secrets.DOCKERHUB_TOKEN }} - - name: Login to GitHub Container Registry if: needs.init.outputs.publish == 'true' uses: docker/login-action@v2.2.0 @@ -72,12 +69,13 @@ jobs: run: echo "BUILD_ARGS=--test" >> $GITHUB_ENV - name: Build plugin - uses: home-assistant/builder@2023.06.0 + uses: home-assistant/builder@2023.06.1 with: args: | $BUILD_ARGS \ --${{ matrix.arch }} \ --target /data \ + --cosign \ --generic ${{ needs.init.outputs.version }} env: CAS_API_KEY: ${{ secrets.CAS_TOKEN }} diff --git a/build.yaml b/build.yaml index 5dd120e..575376f 100644 --- a/build.yaml +++ b/build.yaml @@ -1,14 +1,16 @@ -image: homeassistant/{arch}-hassio-multicast -shadow_repository: ghcr.io/home-assistant +image: ghcr.io/home-assistant/{arch}-hassio-multicast build_from: - aarch64: ghcr.io/home-assistant/aarch64-base:3.14 - armhf: ghcr.io/home-assistant/armhf-base:3.14 - armv7: ghcr.io/home-assistant/armv7-base:3.14 - amd64: ghcr.io/home-assistant/amd64-base:3.14 - i386: ghcr.io/home-assistant/i386-base:3.14 + aarch64: ghcr.io/home-assistant/aarch64-base:3.17 + armhf: ghcr.io/home-assistant/armhf-base:3.17 + armv7: ghcr.io/home-assistant/armv7-base:3.17 + amd64: ghcr.io/home-assistant/amd64-base:3.17 + i386: ghcr.io/home-assistant/i386-base:3.17 codenotary: signer: notary@home-assistant.io base_image: notary@home-assistant.io +cosign: + base_identity: https://github.com/home-assistant/docker-base/.* + identity: https://github.com/home-assistant/plugin-multicast/.* args: MDNS_REPEATER_VERSION: 1.2.0 labels: