Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Revamp GitHub Workflows #5

Merged
merged 1 commit into from
Dec 20, 2023
Merged

Conversation

twz123
Copy link
Member

@twz123 twz123 commented Oct 5, 2023

  • Build Pull Requests
  • Upload the built OCI image as a build artifact
  • Do the trivy scan before uploading a possibly vulnerable image to the registry
  • Don't upload trivy results for non-tagged images, fail the build instead if vulnerabilities are detected
  • No longer publish the latest OCI image tag
  • Upload all images that are not built from tags to ttl.sh
  • Scan the real images on Quay.io in the nightly schedule instead of building fresh images

* Build Pull Requests
* Upload the built OCI image as a build artifact
* Do the trivy scan before uploading a possibly vulnerable image to the
  registry
* Don't upload trivy results for non-tagged images, fail the build
  instead if vulnerabilities are detected
* No longer publish the latest OCI image tag
* Upload all images that are not built from tags to ttl.sh
* Scan the real images on Quay.io in the nightly schedule instead of
  building fresh images

Signed-off-by: Tom Wieczorek <[email protected]>
@twz123 twz123 merged commit b63723c into k0sproject:main Dec 20, 2023
1 check passed
@twz123 twz123 deleted the revamp-workflows branch December 20, 2023 12:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants