run directly not as action

Signed-off-by: Ramon Petgrave <[email protected]>
slsa-framework · Aug 9, 2024 · 4089d6d · 4089d6d
1 parent 27bdcde
commit 4089d6d
Showing 1 changed file with 32 additions and 6 deletions.
diff --git a/.github/workflows/generator_generic_slsa3_alt.yml b/.github/workflows/generator_generic_slsa3_alt.yml
@@ -210,13 +210,39 @@ jobs:
             echo "${UNTRUSTED_SUBJECTS}" > "${SUBJECTS_FILENAME}"
           fi
 
-      - name: Generate slsa layout file
-        id: slsa-layout
-        uses: slsa-framework/slsa-github-generator/internal/builders/slsa-layout@ramonpetgrave64-internal-builder-sigstore-bundle
+      - name: Checkout the tool repo
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
         with:
-          provenance-name: "${{ inputs.provenance-name }}"
-          base64-subjects-file: "${{ env.SUBJECTS_FILENAME }}"
-          slsa-layout-file: "${{ env.SLSA_LAYOUT_FILENAME }}"
+          repository: slsa-framework/slsa-github-generator
+          ref: 'ramonpetgrave64-internal-builder-sigstore-bundle'
+          path: __TOOL_CHECKOUT_DIR__
+
+      - shell: bash
+        env:
+          BASE64_SUBJECTS_FILE: ${{ env.SUBJECTS_FILENAME }}
+          PROVENANCE_NAME: ${{ inputs.provenance-name }}
+          OUTPUT_FILE: ${{ env.SLSA_LAYOUT_FILENAME }}
+        run: |
+          pwd
+          ls -lahR
+          DIR="$( pwd )"
+          (
+            cd __TOOL_CHECKOUT_DIR__/internal/builders/slsa-layout && \
+            ls -lahR && \
+            go run . \
+              --base64-subjects-file "$DIR"/"$BASE64_SUBJECTS_FILE" \
+              --provenance-name $PROVENANCE_NAME \
+              --output-file "$DIR"/"$OUTPUT_FILE"
+          )
+          echo "attestation-name=${PROVENANCE_NAME}" >>"${GITHUB_OUTPUT}"
+
+      # - name: Generate slsa layout file
+      #   id: slsa-layout
+      #   uses: slsa-framework/slsa-github-generator/internal/builders/slsa-layout@ramonpetgrave64-internal-builder-sigstore-bundle
+      #   with:
+      #     provenance-name: "${{ inputs.provenance-name }}"
+      #     base64-subjects-file: "${{ env.SUBJECTS_FILENAME }}"
+      #     slsa-layout-file: "${{ env.SLSA_LAYOUT_FILENAME }}"
 
       - name: Generate attestations
         id: attestations