This repository has been archived by the owner on Apr 2, 2024. It is now read-only.
update chart appVersion to v0.1.220 (#124) #79
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Release Charts | |
on: | |
workflow_dispatch: | |
push: | |
branches: | |
- main | |
paths: | |
- "charts/**" | |
permissions: | |
contents: write | |
packages: write | |
jobs: | |
release: | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout | |
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
with: | |
fetch-depth: 0 | |
- name: Configure Git | |
run: | | |
git config user.name "$GITHUB_ACTOR" | |
git config user.email "[email protected]" | |
- name: Install Helm | |
uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3.5 | |
with: | |
version: 3.13.2 | |
- name: Install sigstore Helm plugin | |
run: | | |
helm plugin install https://github.com/sigstore/helm-sigstore | |
- name: Install GPG Keys | |
run: | | |
cat <(echo -e "${{ secrets.GPG_PRIVATE_KEY }}") | gpg --import --batch | |
gpg --export > /home/runner/.gnupg/pubring.gpg | |
gpg --export-secret-keys > /home/runner/.gnupg/secring.gpg | |
- name: Login to GitHub Container Registry | |
uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0 | |
with: | |
registry: ghcr.io | |
username: ${{ github.actor }} | |
password: ${{ secrets.GITHUB_TOKEN }} | |
- name: Run chart-releaser | |
uses: helm/chart-releaser-action@a917fd15b20e8b64b94d9158ad54cd6345335584 # v1.6.0 | |
env: | |
CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}" | |
CR_SIGN: "true" | |
CR_KEY: "${{ secrets.GPG_KEY_NAME }}" | |
CR_KEYRING: "/home/runner/.gnupg/secring.gpg" | |
- name: Upload Helm Charts to Rekor | |
run: | | |
for chart in `find .cr-release-packages -name '*.tgz' -print`; do | |
helm sigstore upload --keyring=/home/runner/.gnupg/secring.gpg ${chart} | |
done | |
- name: Push Charts as OCI to GHCR | |
run: | | |
for chart in `find .cr-release-packages -name '*.tgz' -print`; do | |
helm push ${chart} oci://ghcr.io/${GITHUB_REPOSITORY} | |
done | |