Loading .github/workflows/docker-image-linux-ghcr.yml +6 −17 Original line number Diff line number Diff line Loading @@ -79,7 +79,9 @@ jobs: linux/ppc64le linux/s390x push: ${{ github.event_name != 'pull_request' }} tags: ${{ steps.meta.outputs.tags }} tags: | ${{ steps.meta.outputs.tags }} ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:latest labels: ${{ steps.meta.outputs.labels }} cache-from: type=gha cache-to: type=gha,mode=max Loading @@ -99,22 +101,9 @@ jobs: linux/ppc64le linux/s390x push: ${{ github.event_name != 'pull_request' }} tags: ${{ steps.meta.outputs.tags }}-slim tags: | ${{ steps.meta.outputs.tags }}-slim ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:latest-slim labels: ${{ steps.meta.outputs.labels }} cache-from: type=gha cache-to: type=gha,mode=max # Sign the resulting Docker image digest except on PRs. # This will only write to the public Rekor transparency log when the Docker # repository is public to avoid leaking data. If you would like to publish # transparency data even for private images, pass --force to cosign below. # https://github.com/sigstore/cosign - name: Sign the published Docker image if: ${{ github.event_name != 'pull_request' }} env: # https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-an-intermediate-environment-variable TAGS: ${{ steps.meta.outputs.tags }} DIGEST: ${{ steps.build-and-push.outputs.digest }} # This step uses the identity token to provision an ephemeral certificate # against the sigstore community Fulcio instance. run: echo "${TAGS}" | xargs -I {} cosign sign --yes {}@${DIGEST} .github/workflows/docker-image-linux.yml +1 −0 Original line number Diff line number Diff line Loading @@ -53,3 +53,4 @@ jobs: push: true tags: | ${{ secrets.DOCKERHUB_USERNAME }}/pyinstaller-linux:${{ github.ref_name }}-slim ${{ secrets.DOCKERHUB_USERNAME }}/pyinstaller-linux:latest-slim README.md +2 −0 Original line number Diff line number Diff line Loading @@ -19,6 +19,8 @@ Images available on multiple container registry: - `ghcr.io/batonogov/pyinstaller-linux` - `ghcr.io/batonogov/pyinstaller-osx` For linux images have slim version. ## Usage There are three containers, one for `Linux` and one for `Windows` and one for `osx` builds. Loading Loading
.github/workflows/docker-image-linux-ghcr.yml +6 −17 Original line number Diff line number Diff line Loading @@ -79,7 +79,9 @@ jobs: linux/ppc64le linux/s390x push: ${{ github.event_name != 'pull_request' }} tags: ${{ steps.meta.outputs.tags }} tags: | ${{ steps.meta.outputs.tags }} ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:latest labels: ${{ steps.meta.outputs.labels }} cache-from: type=gha cache-to: type=gha,mode=max Loading @@ -99,22 +101,9 @@ jobs: linux/ppc64le linux/s390x push: ${{ github.event_name != 'pull_request' }} tags: ${{ steps.meta.outputs.tags }}-slim tags: | ${{ steps.meta.outputs.tags }}-slim ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:latest-slim labels: ${{ steps.meta.outputs.labels }} cache-from: type=gha cache-to: type=gha,mode=max # Sign the resulting Docker image digest except on PRs. # This will only write to the public Rekor transparency log when the Docker # repository is public to avoid leaking data. If you would like to publish # transparency data even for private images, pass --force to cosign below. # https://github.com/sigstore/cosign - name: Sign the published Docker image if: ${{ github.event_name != 'pull_request' }} env: # https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-an-intermediate-environment-variable TAGS: ${{ steps.meta.outputs.tags }} DIGEST: ${{ steps.build-and-push.outputs.digest }} # This step uses the identity token to provision an ephemeral certificate # against the sigstore community Fulcio instance. run: echo "${TAGS}" | xargs -I {} cosign sign --yes {}@${DIGEST}
.github/workflows/docker-image-linux.yml +1 −0 Original line number Diff line number Diff line Loading @@ -53,3 +53,4 @@ jobs: push: true tags: | ${{ secrets.DOCKERHUB_USERNAME }}/pyinstaller-linux:${{ github.ref_name }}-slim ${{ secrets.DOCKERHUB_USERNAME }}/pyinstaller-linux:latest-slim
README.md +2 −0 Original line number Diff line number Diff line Loading @@ -19,6 +19,8 @@ Images available on multiple container registry: - `ghcr.io/batonogov/pyinstaller-linux` - `ghcr.io/batonogov/pyinstaller-osx` For linux images have slim version. ## Usage There are three containers, one for `Linux` and one for `Windows` and one for `osx` builds. Loading
![github-actions[bot]'s avatar](https://secure.gravatar.com/avatar/e7cd911927c7d1acf6281b69d385990d8fadcd26871048bbcdbff2e88da7f607?s=48&d=identicon "github-actions[bot]")
Fedor Batonogov <f.batonogov@yandex.ru>Fedor Batonogov <f.batonogov@yandex.ru>