gosec/.github/workflows/release.yml

name: Release
on:
  push:
    tags:
      - 'v*'
jobs:
  build:
    runs-on: ubuntu-latest
    env:
      GO111MODULE: on
      ACTIONS_ALLOW_UNSECURE_COMMANDS: true
    steps:
      - name: Checkout Source 
        uses: actions/checkout@v2
      - name: Unshallow
        run: git fetch --prune --unshallow
      - name: Set up Go
        uses: actions/setup-go@v2
        with:
          go-version: 1.16.x
      - name : Get release version
        id: get_version
        run: echo ::set-env name=RELEASE_VERSION::$(echo ${GITHUB_REF:10})
      - name: Generate SBOM
        uses: CycloneDX/gh-gomod-generate-sbom@v0.3.0
        with:
          json: true
          output: bom.json
          resolve-licenses: true
          version: ^v0
      - name: Release Binaries
        uses: goreleaser/goreleaser-action@v2
        with:
          version: latest
          args: release --rm-dist
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
      - name: Release Docker Image
        uses: elgohr/Publish-Docker-Github-Action@master
        with:
            name: securego/gosec
            username: ${{ secrets.DOCKER_USERNAME }}
            password: ${{ secrets.DOCKER_PASSWORD }}
            buildargs: GO_VERSION=1.16
            tags: "latest,${{ env.RELEASE_VERSION }}"
            tag_names: true
Automate the release process using a GitHub workflow The release will trigger when a new tag is pushed. Signed-off-by: Cosmin Cojocar <cosmin.cojocar@gmx.ch> 2020-04-09 12:01:40 +01:00			`name: Release`
			`on:`
			`push:`
			`tags:`
			`- 'v*'`
			`jobs:`
			`build:`
			`runs-on: ubuntu-latest`
			`env:`
			`GO111MODULE: on`
Fix the release workflow to allow unsecure commands Signed-off-by: Cosmin Cojocar <ccojocar@cloudbees.com> 2021-01-22 10:36:52 +00:00			`ACTIONS_ALLOW_UNSECURE_COMMANDS: true`
Automate the release process using a GitHub workflow The release will trigger when a new tag is pushed. Signed-off-by: Cosmin Cojocar <cosmin.cojocar@gmx.ch> 2020-04-09 12:01:40 +01:00			`steps:`
			`- name: Checkout Source`
			`uses: actions/checkout@v2`
			`- name: Unshallow`
			`run: git fetch --prune --unshallow`
			`- name: Set up Go`
Update all dependencies (#538) Co-authored-by: Renovate Bot <bot@renovateapp.com> 2020-11-02 08:15:56 +00:00			`uses: actions/setup-go@v2`
Automate the release process using a GitHub workflow The release will trigger when a new tag is pushed. Signed-off-by: Cosmin Cojocar <cosmin.cojocar@gmx.ch> 2020-04-09 12:01:40 +01:00			`with:`
Add support for Go 1.16 in the CI and release workflows (#581) Signed-off-by: Cosmin Cojocar <ccojocar@cloudbees.com> 2021-02-26 10:12:38 +00:00			`go-version: 1.16.x`
Automate the release process using a GitHub workflow The release will trigger when a new tag is pushed. Signed-off-by: Cosmin Cojocar <cosmin.cojocar@gmx.ch> 2020-04-09 12:01:40 +01:00			`- name : Get release version`
			`id: get_version`
			`run: echo ::set-env name=RELEASE_VERSION::$(echo ${GITHUB_REF:10})`
Generate SBOM (#655) * Generate SBOM * Update release.yml * Update .github/workflows/release.yml Co-authored-by: Matthieu MOREL <mmorel-35@users.noreply.github.com> * Publish bom.json * Ignore SBOMs generated during CI Co-authored-by: Matthieu MOREL <mmorel-35@users.noreply.github.com> 2021-06-21 09:50:44 +01:00			`- name: Generate SBOM`
Update all dependencies (#658) Co-authored-by: Renovate Bot <bot@renovateapp.com> 2021-06-28 15:09:51 +01:00			`uses: CycloneDX/gh-gomod-generate-sbom@v0.3.0`
Generate SBOM (#655) * Generate SBOM * Update release.yml * Update .github/workflows/release.yml Co-authored-by: Matthieu MOREL <mmorel-35@users.noreply.github.com> * Publish bom.json * Ignore SBOMs generated during CI Co-authored-by: Matthieu MOREL <mmorel-35@users.noreply.github.com> 2021-06-21 09:50:44 +01:00			`with:`
			`json: true`
			`output: bom.json`
			`resolve-licenses: true`
Use version `^v0` instead of `latest` for cyclonedx-gomod (#667) To avoid breaking the build when cyclonedx-gomod introduces breaking changes in a new major version. See https://github.com/CycloneDX/gh-gomod-generate-sbom/releases/tag/v0.3.0 Signed-off-by: nscuro <nscuro@protonmail.com> 2021-07-19 10:25:04 +01:00			`version: ^v0`
Automate the release process using a GitHub workflow The release will trigger when a new tag is pushed. Signed-off-by: Cosmin Cojocar <cosmin.cojocar@gmx.ch> 2020-04-09 12:01:40 +01:00			`- name: Release Binaries`
Update all dependencies (#538) Co-authored-by: Renovate Bot <bot@renovateapp.com> 2020-11-02 08:15:56 +00:00			`uses: goreleaser/goreleaser-action@v2`
Automate the release process using a GitHub workflow The release will trigger when a new tag is pushed. Signed-off-by: Cosmin Cojocar <cosmin.cojocar@gmx.ch> 2020-04-09 12:01:40 +01:00			`with:`
			`version: latest`
			`args: release --rm-dist`
			`env:`
			`GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}`
			`- name: Release Docker Image`
			`uses: elgohr/Publish-Docker-Github-Action@master`
			`with:`
			`name: securego/gosec`
			`username: ${{ secrets.DOCKER_USERNAME }}`
			`password: ${{ secrets.DOCKER_PASSWORD }}`
Add support for Go 1.16 in the CI and release workflows (#581) Signed-off-by: Cosmin Cojocar <ccojocar@cloudbees.com> 2021-02-26 10:12:38 +00:00			`buildargs: GO_VERSION=1.16`
Automate the release process using a GitHub workflow The release will trigger when a new tag is pushed. Signed-off-by: Cosmin Cojocar <cosmin.cojocar@gmx.ch> 2020-04-09 12:01:40 +01:00			`tags: "latest,${{ env.RELEASE_VERSION }}"`
			`tag_names: true`