ci(bluebuild): symlink cosign.{pub,key} to repo root for stage-keys COPY
Some checks failed
Build veilor-os OCI (BlueBuild) / Build + push OCI (push) Failing after 2h52m25s
Some checks failed
Build veilor-os OCI (BlueBuild) / Build + push OCI (push) Failing after 2h52m25s
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
This commit is contained in:
claude-veilor-bot
parent
ba2bfc513c
commit
77aa6a7287
1 changed files with 7 additions and 0 deletions
7
.github/workflows/build-bluebuild.yml
vendored
7
.github/workflows/build-bluebuild.yml
vendored
|
|
@ -128,6 +128,13 @@ jobs:
|
|||
mkdir -p bluebuild
|
||||
printf '%s' "$COSIGN_PRIVATE_KEY" > bluebuild/cosign.key
|
||||
chmod 600 bluebuild/cosign.key
|
||||
# bluebuild's generated Containerfile uses `FROM scratch as
|
||||
# stage-keys; COPY cosign.pub /keys/`. Buildah's build context
|
||||
# is the cwd ($PWD) — symlink the keys to repo root so COPY
|
||||
# finds them there too.
|
||||
ln -sf bluebuild/cosign.pub cosign.pub
|
||||
ln -sf bluebuild/cosign.key cosign.key
|
||||
ls -la cosign.pub cosign.key 2>&1 | head -4
|
||||
|
||||
- name: Build OCI image with BlueBuild CLI container
|
||||
id: bluebuild
|
||||
|
|
|
|||
Loading…
Reference in a new issue