From 8363a11069dfd90de2acfe3dfb90d54c2656edb6 Mon Sep 17 00:00:00 2001
From: pascalholthaus <94793111+pascalholthaus@users.noreply.github.com>
Date: Thu, 4 Jul 2024 06:34:57 +0200
Subject: [PATCH] Add: Push stable to greenbone registry (#1665)

---
 .github/workflows/control.yml        |  4 ++++
 .github/workflows/push-container.yml | 28 ++++++++++++++++++++++++++++
 2 files changed, 32 insertions(+)

diff --git a/.github/workflows/control.yml b/.github/workflows/control.yml
index b1b2cbe92..5bb81e204 100644
--- a/.github/workflows/control.yml
+++ b/.github/workflows/control.yml
@@ -90,6 +90,10 @@ jobs:
       dockerhub_token: ${{ secrets.DOCKERHUB_TOKEN}}
       cosign_key_opensight: ${{ secrets.COSIGN_KEY_OPENSIGHT }}
       cosign_password_opensight: ${{ secrets.COSIGN_KEY_PASSWORD_OPENSIGHT }}
+      greenbone_registry: ${{ secrets.GREENBONE_REGISTRY }}
+      greenbone_registry_user: ${{ secrets.GREENBONE_REGISTRY_USER }}
+      greenbone_registry_token: ${{ secrets.GREENBONE_REGISTRY_TOKEN }}
+      mattermost_webhook_url: ${{ secrets.MATTERMOST_WEBHOOK_URL }}
     with:
       is_latest_tag: ${{needs.init.outputs.docker_build_is_latest}}
       is_version_tag: ${{needs.init.outputs.docker_build_is_version }}
diff --git a/.github/workflows/push-container.yml b/.github/workflows/push-container.yml
index d38e72ada..275664a2c 100644
--- a/.github/workflows/push-container.yml
+++ b/.github/workflows/push-container.yml
@@ -18,6 +18,14 @@ on:
         required: true
       cosign_password_opensight:
         required: true
+      greenbone_registry:
+        required: true
+      greenbone_registry_user:
+        required: true
+      greenbone_registry_token:
+        required: true
+      mattermost_webhook_url:
+        required: true
 
 # Grants rights to push to the Github container registry.
 permissions:
@@ -122,3 +130,23 @@ jobs:
           registry-password: ${{ secrets.GITHUB_TOKEN }}
           scout-user: ${{ secrets.dockerhub_user }}
           scout-password: ${{ secrets.dockerhub_token }}
+
+  greenbone_reg_debian_stable:
+    name: greenbone-reg:debian:stable
+    uses: greenbone/workflows/.github/workflows/container-build-push-2nd-gen.yml@main
+    with:
+      image-url: community/openvas-scanner
+      image-labels: |
+        org.opencontainers.image.vendor=Greenbone
+        org.opencontainers.image.base.name=greenbone/gvm-libs
+      artifact-name: rs-binaries
+      artifact-path: assets
+    secrets:
+      COSIGN_KEY_OPENSIGHT: ${{ secrets.cosign_key_opensight }}
+      COSIGN_KEY_PASSWORD_OPENSIGHT: ${{ secrets.cosign_password_opensight }}
+      DOCKERHUB_USERNAME: ${{ secrets.dockerhub_user }}
+      DOCKERHUB_TOKEN: ${{ secrets.dockerhub_token }}
+      GREENBONE_REGISTRY: ${{ secrets.greenbone_registry }}
+      GREENBONE_REGISTRY_USER: ${{ secrets.greenbone_registry_user }}
+      GREENBONE_REGISTRY_TOKEN: ${{ secrets.greenbone_registry_token }}
+      MATTERMOST_WEBHOOK_URL: ${{ secrets.mattermost_webhook_url }}