From 956180a1d9138b360189aafa17519a554e318010 Mon Sep 17 00:00:00 2001 From: frank zhu Date: Mon, 19 Aug 2024 13:25:12 -0500 Subject: [PATCH] fix typo and remove --yes --- .github/actions/build-sign-publish-chainlink/action.yml | 8 +++----- 1 file changed, 3 insertions(+), 5 deletions(-) diff --git a/.github/actions/build-sign-publish-chainlink/action.yml b/.github/actions/build-sign-publish-chainlink/action.yml index e1d85888a01..70e1ae11702 100644 --- a/.github/actions/build-sign-publish-chainlink/action.yml +++ b/.github/actions/build-sign-publish-chainlink/action.yml @@ -261,7 +261,7 @@ runs: shell: sh run: | echo "${{ inputs.cosign-public-key }}" > cosign.key - cosign verify --key cosign.key "${{ env.root_image_name }}" --yes + cosign verify --key cosign.key "${{ env.root_image_name }}" rm -f cosign.key - if: inputs.sign-images == 'true' && inputs.sign-method == 'keyless' @@ -277,7 +277,6 @@ runs: cosign verify "${{ env.root_image_name }}" \ --certificate-oidc-issuer https://token.actions.githubusercontent.com \ --certificate-identity "https://github.com/smartcontractkit/chainlink/.github/workflows/build-publish.yml@${{ github.ref }}" - --yes - if: inputs.sign-images == 'true' && inputs.sign-method == 'keypair' name: Sign the published non-root Docker image using keypair method @@ -294,7 +293,7 @@ runs: shell: sh run: | echo "${{ inputs.cosign-public-key }}" > cosign.key - cosign verify --key cosign.key "${{ env.nonroot_image_name }}" --yes + cosign verify --key cosign.key "${{ env.nonroot_image_name }}" rm -f cosign.key - if: inputs.sign-images == 'true' && inputs.sign-method == 'keyless' @@ -307,7 +306,6 @@ runs: name: Verify the signature of the published non-root Docker image using keyless shell: sh run: | - cosign verify "${{ env.nonroot_image_name }}" + cosign verify "${{ env.nonroot_image_name }}" \ --certificate-oidc-issuer https://token.actions.githubusercontent.com \ --certificate-identity "https://github.com/smartcontractkit/chainlink/.github/workflows/build-publish.yml@${{ github.ref }}" - --yes