-
Notifications
You must be signed in to change notification settings - Fork 0
/
justfile
65 lines (63 loc) · 2.59 KB
/
justfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
# evaluate an atomic container
atomic-container registry="ghcr.io" org="ublue-os" variant="silverblue" suffix="main":
dagger \
--progress={{ progress }} \
call \
-m atomic \
--image-registry "{{ registry }}" \
--org "{{ org }}" \
--tag "{{ tagFedoraLatestVersion }}" \
--variant "{{ variant }}" \
--suffix "{{ suffix }}" \
--additional-labels="$(printf "{{ labels }}" | sed -n -e 'H;${x;s/\n/,/g;s/^,//;p;}' )" \
--source . \
container {{ args }}
# publish (w/o sign) atomic image
atomic-publish registry="ghcr.io" org="ublue-os" variant="silverblue" suffix="main" name="atomic-silverblue-main" skip-registry-namespace="false":
dagger call \
--progress=plain \
-m atomic \
--image-registry "{{ registry }}" \
--org "{{ org }}" \
--tag "{{ tagFedoraLatestVersion }}" \
--variant "{{ variant }}" \
--suffix "{{ suffix }}" \
--additional-labels="$(printf "{{ labels }}" | sed -n -e 'H;${x;s/\n/,/g;s/^,//;p;}' )" \
--source . \
publish \
--image-registry="{{ registry }}" \
--image-name="{{ name }}" \
--repository="containers" \
--username=$GITHUB_USERNAME \
--secret=env:GITHUB_TOKEN \
--additional-tags="$(printf "{{ tags }}" | sed -n -e 'H;${x;s/\n/,/g;s/^,//;p;}' )" \
--skip-registry-namespace={{ skip-registry-namespace }}
# - set labels & tags from the commandline to override (tags="foo,bar")
# - requires the following env:
# - GITHUB_USERNAME
# - GITHUB_TOKEN
# - COSIGN_PASSWORD
# - COSIGN_PRIVATE_KEY
# publish and sign atomic image
atomic-publish-and-sign registry="ghcr.io" org="ublue-os" variant="silverblue" suffix="main" name="atomic-silverblue-main" skip-registry-namespace="false":
dagger \
--progress=plain \
call \
-m atomic \
--image-registry "{{ registry }}" \
--org "{{ org }}" \
--tag "{{ tagFedoraLatestVersion }}" \
--variant "{{ variant }}" \
--suffix "{{ suffix }}" \
--additional-labels="$(printf "{{ labels }}" | sed -n -e 'H;${x;s/\n/,/g;s/^,//;p;}' )" \
--source . \
publish-and-sign \
--image-registry=ghcr.io \
--image-name="{{ name }}" \
--repository="containers" \
--username=$GITHUB_USERNAME \
--secret=env:GITHUB_TOKEN \
--additional-tags="$(printf "{{ tags }}" | sed -n -e 'H;${x;s/\n/,/g;s/^,//;p;}' )" \
--skip-registry-namespace={{ skip-registry-namespace }} \
--cosign-private-key=env:COSIGN_PRIVATE_KEY \
--cosign-password=env:COSIGN_PASSWORD