Skip to content

Commit

Permalink
chore: fix GITHUB_TOKEN permission
Browse files Browse the repository at this point in the history
  • Loading branch information
@TonyRL
TonyRL committed Dec 10, 2024
1 parent cbc312a commit 9ac155c
Show file tree
Hide file tree
Showing 2 changed files with 18 additions and 10 deletions.
14 changes: 9 additions & 5 deletions .github/workflows/build-nightly-release.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,7 @@ jobs:
id-token: write
contents: read
attestations: write
packages: write
steps:
- name: Checkout
uses: actions/checkout@v4
Expand Down Expand Up @@ -64,11 +65,14 @@ jobs:
cache-from: type=gha
cache-to: type=gha,mode=max

- name: Attest
- name: Attest (Dockerhub)
uses: actions/attest-build-provenance@v2
id: attest
with:
subject-name: |
docker.io/${{ vars.DOCKER_USERNAME }}/ttrss
${{ env.REGISTRY }}/${{ github.repository }}
subject-name: ${{ vars.DOCKER_USERNAME }}/ttrss
subject-digest: ${{ steps.push.outputs.digest }}

- name: Attest (Container Registry)
uses: actions/attest-build-provenance@v2
with:
subject-name: ${{ env.REGISTRY }}/${{ github.repository }}
subject-digest: ${{ steps.push.outputs.digest }}
14 changes: 9 additions & 5 deletions .github/workflows/build-release.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,6 +24,7 @@ jobs:
id-token: write
contents: read
attestations: write
packages: write
steps:
- name: Checkout
uses: actions/checkout@v4
Expand Down Expand Up @@ -72,11 +73,14 @@ jobs:
cache-from: type=gha
cache-to: type=gha,mode=max

- name: Attest
- name: Attest (Dockerhub)
uses: actions/attest-build-provenance@v2
id: attest
with:
subject-name: |
docker.io/${{ vars.DOCKER_USERNAME }}/ttrss
${{ env.REGISTRY }}/${{ github.repository }}
subject-name: ${{ vars.DOCKER_USERNAME }}/ttrss
subject-digest: ${{ steps.push.outputs.digest }}

- name: Attest (Container Registry)
uses: actions/attest-build-provenance@v2
with:
subject-name: ${{ env.REGISTRY }}/${{ github.repository }}
subject-digest: ${{ steps.push.outputs.digest }}

0 comments on commit 9ac155c

Please sign in to comment.