Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Revamp GitHub Workflows #5

Merged
merged 1 commit into from
Dec 20, 2023
Merged

Revamp GitHub Workflows #5

merged 1 commit into from
Dec 20, 2023

Conversation

twz123
Copy link
Member

@twz123 twz123 commented Oct 5, 2023

  • Build Pull Requests
  • Upload the built OCI image as a build artifact
  • Do the trivy scan before uploading a possibly vulnerable image to the registry
  • Don't upload trivy results for non-tagged images, fail the build instead if vulnerabilities are detected
  • No longer publish the latest OCI image tag
  • Upload all images that are not built from tags to ttl.sh
  • Scan the real images on Quay.io in the nightly schedule instead of building fresh images

@twz123
Revamp GitHub Workflows
b2e9531 
* Build Pull Requests
* Upload the built OCI image as a build artifact
* Do the trivy scan before uploading a possibly vulnerable image to the
  registry
* Don't upload trivy results for non-tagged images, fail the build
  instead if vulnerabilities are detected
* No longer publish the latest OCI image tag
* Upload all images that are not built from tags to ttl.sh
* Scan the real images on Quay.io in the nightly schedule instead of
  building fresh images

Signed-off-by: Tom Wieczorek <twieczorek@mirantis.com>
@twz123 twz123 merged commit b63723c into k0sproject:main Dec 20, 2023
1 check passed
@twz123 twz123 deleted the revamp-workflows branch December 20, 2023 12:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jnummelin jnummelin jnummelin approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@twz123 @jnummelin