ci(bluebuild): symlink cosign.{pub,key} to repo root for stage-keys COPY
This commit is contained in:
obsidian-ai
parent
5910989f12
commit
e6aa2d14a8
1 changed files with 7 additions and 0 deletions
7
.github/workflows/build-bluebuild.yml
vendored
7
.github/workflows/build-bluebuild.yml
vendored
|
|
@ -128,6 +128,13 @@ jobs:
|
|||
mkdir -p bluebuild
|
||||
printf '%s' "$COSIGN_PRIVATE_KEY" > bluebuild/cosign.key
|
||||
chmod 600 bluebuild/cosign.key
|
||||
# bluebuild's generated Containerfile uses `FROM scratch as
|
||||
# stage-keys; COPY cosign.pub /keys/`. Buildah's build context
|
||||
# is the cwd ($PWD) — symlink the keys to repo root so COPY
|
||||
# finds them there too.
|
||||
ln -sf bluebuild/cosign.pub cosign.pub
|
||||
ln -sf bluebuild/cosign.key cosign.key
|
||||
ls -la cosign.pub cosign.key 2>&1 | head -4
|
||||
|
||||
- name: Build OCI image with BlueBuild CLI container
|
||||
id: bluebuild
|
||||
|
|
|
|||
Loading…
Reference in a new issue