fix: update github repo refs for docker hub (#2053)

* fix: update github repo refs for docker hub

* ci: updated wf to use env var for the docker hub space

Author: sudo-kraken

.github/workflows/release.yml

@@ -13,6 +13,9 @@ concurrency:
   group: release-${{ github.ref }}
   cancel-in-progress: true
 
+env:
+  DOCKER_HUB: seerr/seerr
+
 jobs:
   changelog:
     name: Generate changelog
@@ -177,8 +180,8 @@ jobs:
         if: ${{ !contains(env.VERSION, '-') }}
         run: |
           docker buildx imagetools create \
-            -t ${{ github.repository }}:latest \
-            ${{ github.repository }}:${{ env.VERSION }}
+            -t ${{ env.DOCKER_HUB }}:latest \
+            ${{ env.DOCKER_HUB }}:${{ env.VERSION }}
 
           docker buildx imagetools create \
             -t ghcr.io/${{ github.repository }}:latest \
@@ -223,15 +226,15 @@ jobs:
       - name: Sign images
         run: |
           cosign sign --recursive "ghcr.io/${{ github.repository }}@${{ needs.publish.outputs.image_digest }}"
-          cosign sign --recursive "${{ github.repository }}@${{ needs.publish.outputs.image_digest }}"
+          cosign sign --recursive "${{ env.DOCKER_HUB }}@${{ needs.publish.outputs.image_digest }}"
 
       - name: Generate SBOMs
         run: |
           trivy image --format cyclonedx --output seerr-ghcr-image-${{ env.VERSION }}.sbom \
             "ghcr.io/${{ github.repository }}@${{ needs.publish.outputs.image_digest }}"
 
           trivy image --format cyclonedx --output seerr-dockerhub-image-${{ env.VERSION }}.sbom \
-            "${{ github.repository }}@${{ needs.publish.outputs.image_digest }}"
+            "${{ env.DOCKER_HUB }}@${{ needs.publish.outputs.image_digest }}"
 
       - name: Attest SBOMs
         run: |
@@ -243,7 +246,7 @@ jobs:
           cosign attest \
             --type cyclonedx \
             --predicate seerr-dockerhub-image-${{ env.VERSION }}.sbom \
-            "${{ github.repository }}@${{ needs.publish.outputs.image_digest }}"
+            "${{ env.DOCKER_HUB }}@${{ needs.publish.outputs.image_digest }}"
 
       - name: Upload SBOMs
         uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
@@ -271,7 +274,7 @@ jobs:
             --certificate-identity "https://github.com/${{ github.workflow_ref }}" \
             --certificate-oidc-issuer "https://token.actions.githubusercontent.com"
 
-          cosign verify "${{ github.repository }}@${{ needs.publish.outputs.image_digest }}" \
+          cosign verify "${{ env.DOCKER_HUB }}@${{ needs.publish.outputs.image_digest }}" \
             --certificate-identity "https://github.com/${{ github.workflow_ref }}" \
             --certificate-oidc-issuer "https://token.actions.githubusercontent.com"
 
@@ -282,7 +285,7 @@ jobs:
             --certificate-identity "https://github.com/${{ github.workflow_ref }}" \
             --certificate-oidc-issuer "https://token.actions.githubusercontent.com" > /dev/null
 
-          cosign verify-attestation "${{ github.repository }}@${{ needs.publish.outputs.image_digest }}" \
+          cosign verify-attestation "${{ env.DOCKER_HUB }}@${{ needs.publish.outputs.image_digest }}" \
             --type cyclonedx \
             --certificate-identity "https://github.com/${{ github.workflow_ref }}" \
             --certificate-oidc-issuer "https://token.actions.githubusercontent.com" > /dev/null

docs/using-jellyseerr/advanced/verifying-signed-images.mdx

@@ -58,7 +58,7 @@ Verification should always be performed using the image digest (SHA256).
   <TabItem value="docker" label="Docker">
 
 ```bash
-docker buildx imagetools inspect docker.io/seerr-team/seerr:v2.7.4 --format '{{json .Manifest.Digest}}' | tr -d '"'
+docker buildx imagetools inspect ghcr.io/seerr-team/seerr:v2.7.4 --format '{{json .Manifest.Digest}}' | tr -d '"'
 ```
   </TabItem>