workaround defectdojo expecting a non-empty scanstarttime for their e… #412
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Publish | |
on: | |
push: | |
tags: | |
- "v*.*.*" | |
permissions: | |
# Grant the ability to checkout the repository | |
contents: write | |
# Grant the ability to push packages | |
packages: write | |
jobs: | |
publish-docker-images: | |
name: Push Docker images | |
runs-on: ubuntu-latest | |
steps: | |
- name: Check out code | |
uses: actions/checkout@v4 | |
- name: Login to GitHub Container Registry | |
uses: docker/login-action@v3 | |
with: | |
registry: ghcr.io | |
username: ${{ github.actor }} | |
password: ${{ secrets.GITHUB_TOKEN }} | |
- name: Publish Docker images | |
run: | | |
make -j 16 publish-containers | |
make smithyctl-image-publish SMITHY_VERSION=latest | |
- name: Publish component Helm package | |
run: | | |
set -e | |
SMITHY_VERSION_SEMVER=$(sed 's/v//' <<< ${{ github.ref_name }}) | |
# Package and Publish Migrations | |
# this must be the first step, because the migrations are a dependency of the components | |
# it is not set explicitly yet as a dependency, but it will be set soon | |
helm package --dependency-update \ | |
--app-version ${{ github.ref_name }} \ | |
--version ${SMITHY_VERSION_SEMVER} \ | |
./deploy/deduplication-db-migrations/chart | |
helm push deduplication-db-migrations-${SMITHY_VERSION_SEMVER}.tgz oci://ghcr.io/smithy-security/smithy/charts | |
make cmd/smithyctl/bin | |
# Package and Publish Components | |
bin/cmd/linux/amd64/smithyctl components package --version ${{ github.ref_name }} \ | |
--chart-version ${SMITHY_VERSION_SEMVER} \ | |
--name smithy-security-oss-components \ | |
./components | |
helm push smithy-security-oss-components-${SMITHY_VERSION_SEMVER}.tgz oci://ghcr.io/smithy-security/smithy/charts |