Files
starter-workflows/ci
Matt Moore 60d206d090 Have the starter docker-publish action sign digests. (#1255)
* Have the starter `docker-publish` action sign digests.

This change installs `sigstore/cosign` using the `cosign-installer` action,
and uses sigstore's "keyless" signing process to sign the resulting image
digest using the action's identity token (see: `id-token: write`).

Signed-off-by: Matt Moore <mattomata@gmail.com>

* Fully qualify the digest, add setup-buildx-action as workaround

* Drop --force, add public repo check

* Use built-in 'private' bit
2021-12-06 22:35:19 +05:30
..
2020-08-24 11:10:05 +02:00
2021-03-11 12:56:09 +03:00
2021-06-23 14:43:36 -04:00
2020-07-13 12:12:41 -07:00
2020-07-13 12:12:41 -07:00
2020-07-13 12:12:41 -07:00
2021-01-04 13:44:59 -05:00
2021-02-26 17:25:23 -05:00
2020-07-13 12:12:41 -07:00
2020-07-13 12:12:41 -07:00
2021-08-18 19:28:16 -04:00
2021-01-02 16:06:19 -05:00
2021-07-26 11:26:46 -04:00
2021-09-16 11:02:21 +05:30
2021-05-04 19:45:29 +08:00
2021-09-16 11:17:56 +05:30
2021-09-16 11:17:56 +05:30
2021-10-22 01:14:49 -04:00
2021-10-22 01:14:49 -04:00
2021-10-22 01:14:49 -04:00
2021-07-26 14:27:21 +05:30
2020-07-13 12:12:41 -07:00
2021-03-11 12:56:09 +03:00
2020-07-13 12:12:41 -07:00
2021-09-28 15:11:17 +05:30