Skip to content
Release

chore(deps): update github/codeql-action action to v3.28.4 #248

Sign in to view logs

chore(deps): update github/codeql-action action to v3.28.4

chore(deps): update github/codeql-action action to v3.28.4 #248

Workflow file for this run

.github/workflows/release.yml at 1223aa8
---
name: Release
on:
push:
branches:
- main
permissions:
contents: read
pull-requests: read
env:
GO111MODULE: "on"
jobs:
release:
runs-on: ubuntu-latest
name: Release
permissions:
contents: write
pull-requests: write
outputs:
release_created: ${{ steps.release.outputs.release_created }}
steps:
- uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
- uses: googleapis/release-please-action@7987652d64b4581673a76e33ad5e98e3dd56832f # v4.1.3
id: release
publish:
if: needs.release.outputs.release_created
runs-on: ubuntu-latest
name: Publish Plugin
permissions:
id-token: write
contents: write
attestations: write
needs:
- release
strategy:
max-parallel: 4
matrix:
go-version: [1.23.x]
steps:
- uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
with:
egress-policy: audit
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with:
fetch-depth: 0
- uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0
with:
go-version: "${{ matrix.go-version }}"
- uses: sigstore/cosign-installer@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da # v3.7.0
- uses: anchore/sbom-action/download-syft@df80a981bc6edbc4e220a492d3cbe9f5547a6e75 # v0.17.9
- uses: goreleaser/goreleaser-action@9ed2f89a662bf1735a48bc8557fd212fa902bebf # v6.1.0
with:
args: -p 3 release --clean --timeout 60m0s
version: latest
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- uses: actions/attest-build-provenance@520d128f165991a6c774bcb264f323e3d70747f4 # v2.2.0
with:
subject-path: |
dist/*.tar.gz
dist/*.sbom.json
dist/*_checksums.txt
dist/*.sig
dist/*.pem