diff --git a/.woodpecker/share-lt-build.yaml b/.woodpecker/share-lt-build.yaml index 5aadc5f..026316c 100644 --- a/.woodpecker/share-lt-build.yaml +++ b/.woodpecker/share-lt-build.yaml @@ -35,31 +35,27 @@ steps: - echo "Vulnerability Summary:" - trivy image --format table share-lt:test | tee trivy-vuln-summary.txt publish: - image: woodpeckerci/plugin-docker-buildx - settings: - registry: quay.io - repo: quay.io/marshyon/share-lt - platforms: linux/amd64 - # Using the direct image name for local cache and escaped registry for remote - cache_from: - - "share-lt:test" - - "type=registry,ref=quay.io/marshyon/share-lt:latest" - tags: - - v0.0.2 - - latest - username: - from_secret: QUAY_USERNAME - password: - from_secret: QUAY_PASSWORD + image: woodpeckerci/plugin-docker-buildx + settings: + registry: quay.io + repo: quay.io/marshyon/share-lt + platforms: linux/amd64 + tags: + - v0.0.2 + - latest + username: + from_secret: QUAY_USERNAME + password: + from_secret: QUAY_PASSWORD upload-sbom: - image: cgr.dev/chainguard/cosign:latest - volumes: - - /var/run/docker.sock:/var/run/docker.sock - environment: - COSIGN_REGISTRY_USERNAME: - from_secret: QUAY_USERNAME - COSIGN_REGISTRY_PASSWORD: - from_secret: QUAY_PASSWORD - commands: - - cosign attach sbom --sbom sbom.json quay.io/marshyon/share-lt:v0.0.2 || echo "SBOM attach failed" - - echo "Done - trivy report saved to workspace for manual review" \ No newline at end of file + image: cgr.dev/chainguard/cosign:latest + volumes: + - /var/run/docker.sock:/var/run/docker.sock + environment: + COSIGN_REGISTRY_USERNAME: + from_secret: QUAY_USERNAME + COSIGN_REGISTRY_PASSWORD: + from_secret: QUAY_PASSWORD + commands: + - cosign attach sbom --sbom sbom.json quay.io/marshyon/share-lt:v0.0.2 || echo "SBOM attach failed" + - echo "Done - trivy report saved to workspace for manual review" \ No newline at end of file