Skip to content

Commit 2a57409

Browse files
TomHennenTomHennen
authored
Use checktag (#150)
* Use checktag in the GitHub Action Also updates the action to use the new version of the tool for branch updates. Signed-off-by: Tom Hennen <[email protected]> * add debug statement to see what other information we have available Signed-off-by: Tom Hennen <[email protected]> --------- Signed-off-by: Tom Hennen <[email protected]>
1 parent f2031f5 commit 2a57409

File tree

1 file changed

+3
-2
lines changed

1 file changed

+3
-2
lines changed

actions/slsa_with_provenance/action.yml

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -26,13 +26,14 @@ runs:
2626
if: ${{ startsWith(github.ref, 'refs/heads/') }}
2727
run: |
2828
echo "## SLSA Source Properties Branch Push" >> $GITHUB_STEP_SUMMARY
29-
go run github.com/slsa-framework/slsa-source-poc/sourcetool@8de659f119d933d4cfaed300e7d8bd78528a48c7 --github_token ${{ github.token }} checklevelprov --commit ${{ github.sha }} --owner ${{ github.repository_owner }} --repo ${{ github.event.repository.name }} --branch ${{ github.ref_name }} --output_signed_bundle ${{ github.workspace }}/metadata/signed_bundle.intoto.jsonl >> $GITHUB_STEP_SUMMARY
29+
go run github.com/slsa-framework/slsa-source-poc/sourcetool@f2031f563fc7323ce160313a13d456e4422244c9 --github_token ${{ github.token }} checklevelprov --commit ${{ github.sha }} --owner ${{ github.repository_owner }} --repo ${{ github.event.repository.name }} --branch ${{ github.ref_name }} --output_signed_bundle ${{ github.workspace }}/metadata/signed_bundle.intoto.jsonl >> $GITHUB_STEP_SUMMARY
3030
shell: bash
3131
- id: handle_tag_push
3232
if: ${{ startsWith(github.ref, 'refs/tags/') }}
3333
run: |
3434
echo "## SLSA Source Properties Tag Push" >> $GITHUB_STEP_SUMMARY
35-
echo "TODO"
35+
echo "github object contents ${{ github }}"
36+
go run github.com/slsa-framework/slsa-source-poc/sourcetool@f2031f563fc7323ce160313a13d456e4422244c9 --github_token ${{ github.token }} checktag --commit ${{ github.sha }} --owner ${{ github.repository_owner }} --repo ${{ github.event.repository.name }} --tag_name ${{ github.ref_name }} --output_signed_bundle ${{ github.workspace }}/metadata/signed_bundle.intoto.jsonl >> $GITHUB_STEP_SUMMARY
3637
shell: bash
3738
- id: summary
3839
run: |

0 commit comments

Comments
 (0)