update docker login in action (#172)

* update docker login in action * add allowedlist.yaml
goodwithtech · Feb 16, 2022 · a4295a7 · a4295a7
1 parent 081a52b
commit a4295a7
Show file tree

Hide file tree

Showing 2 changed files with 16 additions and 10 deletions.
diff --git a/.github/containerscan/allowedlist.yaml b/.github/containerscan/allowedlist.yaml
@@ -0,0 +1,4 @@
+general:
+  vulnerabilities:
+    # dockle does not use a target feature
+    - CVE-2021-43816
diff --git a/.github/workflows/releasebuild.yml b/.github/workflows/releasebuild.yml
@@ -7,7 +7,7 @@ on:
   pull_request:
 
 jobs:
-  build-and-scan:
+  build-and-release:
     runs-on: ubuntu-latest
     env:
       DOCKER_CLI_EXPERIMENTAL: "enabled"
@@ -28,15 +28,17 @@ jobs:
           go test ./...
         env:
           CGO_ENABLED: 0
-      -
-        name: Docker Login
-        env:
-          DOCKER_USERNAME: ${{ secrets.DOCKER_USERNAME }}
-          DOCKER_PASSWORD: ${{ secrets.DOCKER_PASSWORD }}
-          GITHUB_TOKEN: ${{ secrets.GH_PAT }}
-        run: |
-          echo "${DOCKER_PASSWORD}" | docker login --username "${DOCKER_USERNAME}" --password-stdin
-          echo "${GITHUB_TOKEN}" | docker login ghcr.io --username $GITHUB_ACTOR --password-stdin
+      - name: Login to docker.io registry
+        uses: docker/login-action@v1
+        with:
+          username: ${{ secrets.DOCKER_USERNAME }}
+          password: ${{ secrets.DOCKER_PASSWORD }}
+      - name: Login to ghcr.io registry
+        uses: docker/login-action@v1
+        with:
+          registry: ghcr.io
+          username: goodwithtech
+          password: ${{ secrets.GH_PAT }}
       -
         name: Run GoReleaser
         if: success() && startsWith(github.ref, 'refs/tags/v')