Add Docker signing in .goreleaser.yaml

The .goreleaser.yaml configuration has been updated to include Docker image signing. This is accomplished by utilizing 'docker_signs' and specifying 'artifacts: all', allowing to process and authenticate all output Docker images. The user's password for the Docker registry is taken from the environment variable 'COSIGN_PWD'.
This commit is contained in:
Winni Neessen 2024-03-14 00:11:19 +01:00
parent 0ec81e16cc
commit ac53637f86
Signed by: wneessen
GPG key ID: 5F3AF39B820C119D

View file

@ -108,4 +108,9 @@ dockers:
- "--label=org.opencontainers.image.created={{.Date}}" - "--label=org.opencontainers.image.created={{.Date}}"
- "--label=org.opencontainers.image.title={{.ProjectName}}" - "--label=org.opencontainers.image.title={{.ProjectName}}"
- "--label=org.opencontainers.image.revision={{.FullCommit}}" - "--label=org.opencontainers.image.revision={{.FullCommit}}"
- "--label=org.opencontainers.image.version={{.Version}}" - "--label=org.opencontainers.image.version={{.Version}}"
docker_signs:
- artifacts: all
stdin: '{{ .Env.COSIGN_PWD }}'
output: true