From 9e9de2292db7abb3f51b7f4808d98f0d347a8919 Mon Sep 17 00:00:00 2001 From: Carlos Tadeu Panato Junior Date: Fri, 7 Apr 2023 13:58:03 +0200 Subject: [PATCH] default cosign to v2.0.1 (#117) Signed-off-by: cpanato --- .github/workflows/test-action.yml | 11 ++++++++--- README.md | 8 ++++---- action.yml | 20 ++++++++++---------- 3 files changed, 22 insertions(+), 17 deletions(-) diff --git a/.github/workflows/test-action.yml b/.github/workflows/test-action.yml index 6a15adf..a4bd51d 100644 --- a/.github/workflows/test-action.yml +++ b/.github/workflows/test-action.yml @@ -65,7 +65,7 @@ jobs: - name: Install Cosign uses: ./ with: - cosign-release: 'v1.8.0' + cosign-release: 'v2.0.0' - name: Check install! run: cosign version - name: Check root directory @@ -201,8 +201,13 @@ jobs: runs-on: ${{ matrix.os }} strategy: matrix: - os: [macos-latest, ubuntu-latest, windows-latest] - go_version: ['1.18', '1.19'] + os: + - macos-latest + - ubuntu-latest + - windows-latest + go_version: + - '1.19' + - '1.20' name: Try to install cosign with go ${{ matrix.go_version }} steps: - uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0 diff --git a/README.md b/README.md index e63e51f..fe490fa 100644 --- a/README.md +++ b/README.md @@ -15,7 +15,7 @@ Add the following entry to your Github workflow YAML file: ```yaml uses: sigstore/cosign-installer@main with: - cosign-release: 'v2.0.0' # optional + cosign-release: 'v2.0.1' # optional ``` Example using a pinned version: @@ -32,7 +32,7 @@ jobs: - name: Install Cosign uses: sigstore/cosign-installer@main with: - cosign-release: 'v2.0.0-rc.0' + cosign-release: 'v2.0.1' - name: Check install! run: cosign version ``` @@ -68,9 +68,9 @@ jobs: name: Install Cosign via go install steps: - name: Install go - uses: actions/setup-go@v3 + uses: actions/setup-go@v4 with: - go-version: 1.18 + go-version: '1.20' check-latest: true - name: Install Cosign uses: sigstore/cosign-installer@main diff --git a/action.yml b/action.yml index 64ed72b..0775f77 100644 --- a/action.yml +++ b/action.yml @@ -10,7 +10,7 @@ inputs: cosign-release: description: 'cosign release version to be installed' required: false - default: 'v2.0.0' + default: 'v2.0.1' install-dir: description: 'Where to install the cosign binary' required: false @@ -65,13 +65,13 @@ runs: esac } - bootstrap_version='v2.0.0' - bootstrap_linux_amd64_sha='169a53594c437d53ffc401b911b7e70d453f5a2c1f96eb2a736f34f6356c4f2b' - bootstrap_linux_arm_sha='189d56c9946decdaa272e1dccb47ae64009ea39ac0274cfea00507b9acb877c9' - bootstrap_linux_arm64_sha='8132cb2fb99a4c60ba8e03b079e12462c27073028a5d08c07ecda67284e0c88d' - bootstrap_darwin_amd64_sha='d2c8fc0edb42a1e9745da1c43a2928cee044f3b8a1b8df64088a384c7e6f5b5d' - bootstrap_darwin_arm64_sha='9d7821e1c05da4b07513729cb00d1070c9a95332c66d90fa593ed77d8c72ca2a' - bootstrap_windows_amd64_sha='e78e7464dc0eda1d6ec063ac2738f4d1418b19dd19f999aa37e1679d5d3af82e' + bootstrap_version='v2.0.1' + bootstrap_linux_amd64_sha='924754b2e62f25683e3e74f90aa5e166944a0f0cf75b4196ee76cb2f487dd980' + bootstrap_linux_arm_sha='06815f64ace0ff8e295e4feb9470fdda70b636e2e7f5893432221751bb432a2d' + bootstrap_linux_arm64_sha='4a8cd49518cc667bb16e6aaf9da291b647c38baffa462fd495043ae6762f6981' + bootstrap_darwin_amd64_sha='a22da39c4e290d3ae5a2a882476daf84b46ac19acd0b01aac8e173d7f57b8eae' + bootstrap_darwin_arm64_sha='95774f0f8d0b1674606893e3837ecd3f01d65c0ea4a71409b089307ffd1f9bed' + bootstrap_windows_amd64_sha='b34c778c91231d3626290e3d67bd2c7e0994cd846fcd80505fed4f9ce7b78a16' cosign_executable_name=cosign trap "popd >/dev/null" EXIT @@ -251,8 +251,8 @@ runs: log_info "Installation complete!" fi - if: ${{ runner.os == 'Linux' || runner.os == 'macOS' }} - run: echo "${{ inputs.install-dir }}" >> $GITHUB_PATH + run: echo "${{ inputs.install-dir }}" >> $GITHUB_PATH shell: bash - if: ${{ runner.os == 'Windows' }} - run: echo "${{ inputs.install-dir }}" | Out-File -FilePath $env:GITHUB_PATH -Encoding utf8 -Append + run: echo "${{ inputs.install-dir }}" | Out-File -FilePath $env:GITHUB_PATH -Encoding utf8 -Append shell: pwsh