Skip to content

Commit 0016fef

Browse files
committed
feat(ci): add imagetools inspection
1 parent 04cea9f commit 0016fef

1 file changed

Lines changed: 15 additions & 5 deletions

File tree

.github/workflows/build.yml

Lines changed: 15 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -218,14 +218,24 @@ jobs:
218218
cosign sign --yes \
219219
ghcr.io/${{ github.repository }}@${{ steps.docker_build.outputs.digest }}
220220
221-
- name: Inspect images
221+
- name: Inspect images (GitHub Container Registry)
222222
run: |
223-
echo "::group::DockerHub"
224-
docker buildx imagetools inspect ${{ github.repository }}:${{ steps.docker_meta.outputs.version }}
223+
docker buildx imagetools inspect ghcr.io/${{ github.repository }}:${{ steps.docker_meta.outputs.version }}
224+
225+
echo "::group::Manifest"
226+
docker buildx imagetools inspect ghcr.io/${{ github.repository }}:${{ steps.docker_meta.outputs.version }} --format '{{ json .Manifest }}'
225227
echo "::endgroup::"
226228
227-
echo "::group::GitHub Container Registry"
228-
docker buildx imagetools inspect ghcr.io/${{ github.repository }}:${{ steps.docker_meta.outputs.version }}
229+
echo "::group::Image (linux/amd64)"
230+
docker buildx imagetools inspect ghcr.io/${{ github.repository }}:${{ steps.docker_meta.outputs.version }} --format '{{ json (index .Image "linux/amd64") }}'
231+
echo "::endgroup::"
232+
233+
echo "::group::Provenance (linux/amd64)"
234+
docker buildx imagetools inspect ghcr.io/${{ github.repository }}:${{ steps.docker_meta.outputs.version }} --format '{{ json (index .Provenance "linux/amd64") }}'
235+
echo "::endgroup::"
236+
237+
echo "::group::SBOM (linux/amd64)"
238+
docker buildx imagetools inspect ghcr.io/${{ github.repository }}:${{ steps.docker_meta.outputs.version }} --format '{{ json (index .SBOM "linux/amd64") }}'
229239
echo "::endgroup::"
230240
231241
- name: Verify cosign signatures

0 commit comments

Comments
 (0)