[security] Bump golang.org/x/crypto from 0.22.0 to 0.31.0 (#1141) #33
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# This workflow builds and pushes the dss docker image when a release tag is pushed. | |
# The following secrets must be provided: | |
# DOCKER_USERNAME: The username to log into the registry. | |
# DOCKER_PASSWORD: The access token of the user to log into the registry. | |
# DOCKER_URL: The base url of the repository. Example: `docker.io/interuss` or `interuss`. | |
name: Publish DSS image to Docker Registry (on new release tag) | |
on: | |
push: | |
tags: | |
# To modify to trigger the job for fork's releases | |
# Note: GitHub's filter pattern capabilities are limited[1], so this | |
# pattern matches more often than it should. A more correct regex would | |
# be the one found in scripts/tag.sh. | |
# [1] https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#filter-pattern-cheat-sheet | |
- "interuss/dss/v[0-9]+.[0-9]+.[0-9]+-?*" | |
jobs: | |
docker-hub-push: | |
name: DSS Build and Push to Docker Hub | |
runs-on: ubuntu-latest | |
# To modify to enable the job for forked repository | |
if: github.repository == 'interuss/dss' | |
steps: | |
- name: Job information | |
run: | | |
echo "Job information" | |
echo "Trigger: ${{ github.event_name }}" | |
echo "Host: ${{ runner.os }}" | |
echo "Repository: ${{ github.repository }}" | |
echo "Branch: ${{ github.ref }}" | |
docker images | |
- name: Checkout | |
uses: actions/checkout@v2 | |
with: | |
fetch-depth: 0 | |
- name: Log in to Docker Hub | |
uses: docker/login-action@v1 | |
with: | |
registry: docker.io | |
username: ${{ secrets.DOCKER_USERNAME }} | |
password: ${{ secrets.DOCKER_PASSWORD }} | |
- name: Build and push image | |
env: | |
DOCKER_URL: ${{ secrets.DOCKER_URL }} | |
DOCKER_UPDATE_LATEST: true | |
run: | | |
build/build.sh |