Skip to content

release-tag

release-tag #48

name: Create release
on:
workflow_run:
workflows: [ "Create, Scan and Publish KAITO image" ]
types: [completed]
branches: [release-**]
repository_dispatch:
types: [ release-tag ]
branches: [ release-** ]
permissions:
id-token: write
contents: write
packages: write
env:
GO_VERSION: '1.20'
jobs:
create-release:
if: ${{ github.event.workflow_run.conclusion == 'success' }}
runs-on: ubuntu-20.04
steps:
- name: Harden Runner
uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0
with:
egress-policy: audit
- name: Set up Go ${{ env.GO_VERSION }}
uses: actions/setup-go@v5
with:
go-version: ${{ env.GO_VERSION }}
- name: Checkout the repository at the given SHA from the artifact
uses: actions/checkout@v4
with:
submodules: true
fetch-depth: 0
ref: ${{ github.event.client_payload.tag }}
- name: Goreleaser
uses: goreleaser/goreleaser-action@v5
with:
version: latest
args: release --rm-dist --timeout 60m --debug
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}