You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: README.md
+10-10Lines changed: 10 additions & 10 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -15,7 +15,7 @@ This action will build a docker image from a given directory.
15
15
- If required, the image is signed with [cosign](https://github.com/sigstore/cosign).
16
16
- If required, a provenance file is created according to the [SLSA.dev](https://slsa.dev) specifications.
17
17
- If required, the provenance file is attached to the container.
18
-
- If required, a SBOM file is created according to the [SPDX](https://spdx.dev) specifications. We're using [VMWare Tern](https://github.com/tern-tools/tern) for that. (very slow at the moment)
18
+
- If required, a SBOM file is created according to the [SPDX](https://spdx.dev) specifications. We're using [syft](https://github.com/anchore/syft/) for that.
19
19
- If required, the SBOM file is attached to the container.
20
20
21
21
In every docker image two files are added to the build context:
@@ -152,7 +152,7 @@ This action is a `docker` action.
152
152
## Example usage
153
153
154
154
```yaml
155
-
- uses: philips-software/docker-ci-scripts@v4.1.2
155
+
- uses: philips-software/docker-ci-scripts@v4.5.0
156
156
with:
157
157
dockerfile: "./docker/Dockerfile"
158
158
image-name: "node"
@@ -166,7 +166,7 @@ This action is a `docker` action.
166
166
#### Using Docker Build arguments:
167
167
168
168
```yaml
169
-
- uses: philips-software/docker-ci-scripts@v4.1.2
169
+
- uses: philips-software/docker-ci-scripts@v4.5.0
170
170
with:
171
171
dockerfile: "./docker/Dockerfile"
172
172
image-name: "node"
@@ -184,7 +184,7 @@ This action is a `docker` action.
184
184
185
185
```yaml
186
186
- name: Build Docker Images
187
-
uses: philips-software/docker-ci-scripts@v4.1.2
187
+
uses: philips-software/docker-ci-scripts@v4.5.0
188
188
with:
189
189
dockerfile: .
190
190
image-name: image-name-here
@@ -212,7 +212,7 @@ Store the content of `cosign.pub`, `cosign.key` and the password in GitHub Secre
212
212
213
213
```yaml
214
214
- name: Build Docker Images
215
-
uses: philips-software/docker-ci-scripts@v4.1.2
215
+
uses: philips-software/docker-ci-scripts@v4.5.0
216
216
with:
217
217
dockerfile: .
218
218
image-name: image-name-here
@@ -242,7 +242,7 @@ You will get a result when the image is valid.
242
242
```yaml
243
243
- name: Build Docker Images
244
244
id: docker
245
-
uses: philips-software/docker-ci-scripts@v4.1.2
245
+
uses: philips-software/docker-ci-scripts@v4.5.0
246
246
with:
247
247
dockerfile: .
248
248
image-name: image-name-here
@@ -266,7 +266,7 @@ the COSIGN environment variables. (see #sign how to generate the key-pair)
266
266
267
267
```yaml
268
268
- name: Build Docker Images
269
-
uses: philips-software/docker-ci-scripts@v4.1.2
269
+
uses: philips-software/docker-ci-scripts@v4.5.0
270
270
with:
271
271
dockerfile: .
272
272
image-name: image-name-here
@@ -298,7 +298,7 @@ You can inspect the provenance and decide on whether you want use the image.
298
298
```yaml
299
299
- name: Build Docker Images
300
300
id: docker
301
-
uses: philips-software/docker-ci-scripts@v4.1.2
301
+
uses: philips-software/docker-ci-scripts@v4.5.0
302
302
with:
303
303
dockerfile: .
304
304
image-name: image-name-here
@@ -322,7 +322,7 @@ the COSIGN environment variables. (see #sign how to generate the key-pair)
322
322
323
323
```yaml
324
324
- name: Build Docker Images
325
-
uses: philips-software/docker-ci-scripts@v4.1.2
325
+
uses: philips-software/docker-ci-scripts@v4.5.0
326
326
with:
327
327
dockerfile: .
328
328
image-name: image-name-here
@@ -353,7 +353,7 @@ the COSIGN environment variables. (see #sign how to generate the key-pair)
0 commit comments