kube-bench/.github/workflows/publish.yml

---
name: Publish
on:
  workflow_dispatch:
  push:
    tags:
      - "v*"
env:
  ALIAS: aquasecurity
  DOCKERHUB_ALIAS: aquasec
  REP: kube-bench
jobs:
  publish:
    name: Publish
    runs-on: ubuntu-18.04
    steps:
      - name: Check Out Repo
        uses: actions/checkout@v2
      - name: Set up QEMU
        uses: docker/setup-qemu-action@v1
      - name: Set up Docker Buildx
        id: buildx
        uses: docker/setup-buildx-action@v1
      - name: Cache Docker layers
        uses: actions/cache@v2
        with:
          path: /tmp/.buildx-cache
          key: ${{ runner.os }}-buildxarch-${{ github.sha }}
          restore-keys: |
            ${{ runner.os }}-buildxarch-
      - name: Login to Docker Hub
        uses: docker/login-action@v1
        with:
          username: ${{ secrets.DOCKERHUB_USER }}
          password: ${{ secrets.DOCKERHUB_TOKEN }}
      - name: Login to ECR
        uses: docker/login-action@v1
        with:
          registry: public.ecr.aws
          username: ${{ secrets.ECR_ACCESS_KEY_ID }}
          password: ${{ secrets.ECR_SECRET_ACCESS_KEY }}
      - name: Get version
        id: get_version
        uses: crazy-max/ghaction-docker-meta@v3
        with:
          images: ${{ env.REP }}
          tag-semver: |
            {{version}}

      - name: Build and push - Docker/ECR
        id: docker_build
        uses: docker/build-push-action@v2
        with:
          context: .
          platforms: linux/amd64,linux/arm64,linux/ppc64le,linux/s390x
          builder: ${{ steps.buildx.outputs.name }}
          push: true
          build-args: |
            KUBEBENCH_VERSION=${{ steps.get_version.outputs.version }}
          tags: |
            ${{ env.DOCKERHUB_ALIAS }}/${{ env.REP }}:${{ steps.get_version.outputs.version }}
            public.ecr.aws/${{ env.ALIAS }}/${{ env.REP }}:${{ steps.get_version.outputs.version }}
            ${{ env.DOCKERHUB_ALIAS }}/${{ env.REP }}:latest
            public.ecr.aws/${{ env.ALIAS }}/${{ env.REP }}:latest
          cache-from: type=local,src=/tmp/.buildx-cache/release
          cache-to: type=local,mode=max,dest=/tmp/.buildx-cache/release
      - name: Image digest
        run: echo ${{ steps.docker_build.outputs.digest }}
chore: build and push action for ecr and docker (#790) Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`---`
feat: github actions to publish ecr and docker (#782) * feat: github actions to publish ecr and docker * fix: yaml lint in build Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`name: Publish`
			`on:`
Add manual workflow dispatch to Publish (#804) So we can trigger publish manually 3 years ago			`workflow_dispatch:`
feat: github actions to publish ecr and docker (#782) * feat: github actions to publish ecr and docker * fix: yaml lint in build Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`push:`
			`tags:`
			`- "v*"`
chore: build and push action for ecr and docker (#790) Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`env:`
			`ALIAS: aquasecurity`
Publish to the aquasec org on Docker Hub (#805) * Publish to the aquasec org on Docker Hub * chore: remove spaces 3 years ago			`DOCKERHUB_ALIAS: aquasec`
chore: build and push action for ecr and docker (#790) Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`REP: kube-bench`
feat: github actions to publish ecr and docker (#782) * feat: github actions to publish ecr and docker * fix: yaml lint in build Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`jobs:`
			`publish:`
			`name: Publish`
			`runs-on: ubuntu-18.04`
			`steps:`
			`- name: Check Out Repo`
			`uses: actions/checkout@v2`
			`- name: Set up QEMU`
			`uses: docker/setup-qemu-action@v1`
chore: build and push action for ecr and docker (#790) Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`- name: Set up Docker Buildx`
			`id: buildx`
			`uses: docker/setup-buildx-action@v1`
feat: github actions to publish ecr and docker (#782) * feat: github actions to publish ecr and docker * fix: yaml lint in build Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`- name: Cache Docker layers`
			`uses: actions/cache@v2`
			`with:`
			`path: /tmp/.buildx-cache`
chore: build and push action for ecr and docker (#790) Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`key: ${{ runner.os }}-buildxarch-${{ github.sha }}`
feat: github actions to publish ecr and docker (#782) * feat: github actions to publish ecr and docker * fix: yaml lint in build Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`restore-keys: \|`
chore: build and push action for ecr and docker (#790) Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`${{ runner.os }}-buildxarch-`
feat: github actions to publish ecr and docker (#782) * feat: github actions to publish ecr and docker * fix: yaml lint in build Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`- name: Login to Docker Hub`
			`uses: docker/login-action@v1`
			`with:`
chore: build and push action for ecr and docker (#790) Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`username: ${{ secrets.DOCKERHUB_USER }}`
			`password: ${{ secrets.DOCKERHUB_TOKEN }}`
			`- name: Login to ECR`
			`uses: docker/login-action@v1`
			`with:`
			`registry: public.ecr.aws`
			`username: ${{ secrets.ECR_ACCESS_KEY_ID }}`
			`password: ${{ secrets.ECR_SECRET_ACCESS_KEY }}`
			`- name: Get version`
			`id: get_version`
Update Dependencies (#941) * Create dependabot.yml * Bump crazy-max/ghaction-docker-meta from 1 to 3.4.0 (#1) Bumps [crazy-max/ghaction-docker-meta](https://github.com/crazy-max/ghaction-docker-meta) from 1 to 3.4.0. - [Release notes](https://github.com/crazy-max/ghaction-docker-meta/releases) - [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md) - [Commits](https://github.com/crazy-max/ghaction-docker-meta/compare/v1...v3.4.0) --- updated-dependencies: - dependency-name: crazy-max/ghaction-docker-meta dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update .yamllint.yaml * Update .yamllint.yaml * Update dependabot.yml * Update dependabot.yml * Bump github.com/onsi/ginkgo from 1.10.1 to 1.16.4 (#2) Bumps [github.com/onsi/ginkgo](https://github.com/onsi/ginkgo) from 1.10.1 to 1.16.4. - [Release notes](https://github.com/onsi/ginkgo/releases) - [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md) - [Commits](https://github.com/onsi/ginkgo/compare/v1.10.1...v1.16.4) --- updated-dependencies: - dependency-name: github.com/onsi/ginkgo dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/stretchr/testify from 1.4.0 to 1.7.0 (#4) Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.4.0 to 1.7.0. - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](https://github.com/stretchr/testify/compare/v1.4.0...v1.7.0) --- updated-dependencies: - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/fatih/color from 1.5.0 to 1.12.0 (#6) Bumps [github.com/fatih/color](https://github.com/fatih/color) from 1.5.0 to 1.12.0. - [Release notes](https://github.com/fatih/color/releases) - [Commits](https://github.com/fatih/color/compare/v1.5.0...v1.12.0) --- updated-dependencies: - dependency-name: github.com/fatih/color dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/magiconair/properties from 1.8.0 to 1.8.5 (#3) Bumps [github.com/magiconair/properties](https://github.com/magiconair/properties) from 1.8.0 to 1.8.5. - [Release notes](https://github.com/magiconair/properties/releases) - [Changelog](https://github.com/magiconair/properties/blob/main/CHANGELOG.md) - [Commits](https://github.com/magiconair/properties/compare/v1.8.0...v1.8.5) --- updated-dependencies: - dependency-name: github.com/magiconair/properties dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/aws/aws-sdk-go from 1.35.28 to 1.39.6 (#7) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.35.28 to 1.39.6. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.35.28...v1.39.6) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump gopkg.in/yaml.v2 from 2.3.0 to 2.4.0 (#8) Bumps [gopkg.in/yaml.v2](https://github.com/go-yaml/yaml) from 2.3.0 to 2.4.0. - [Release notes](https://github.com/go-yaml/yaml/releases) - [Commits](https://github.com/go-yaml/yaml/compare/v2.3.0...v2.4.0) --- updated-dependencies: - dependency-name: gopkg.in/yaml.v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/spf13/viper from 1.4.0 to 1.8.1 (#9) Bumps [github.com/spf13/viper](https://github.com/spf13/viper) from 1.4.0 to 1.8.1. - [Release notes](https://github.com/spf13/viper/releases) - [Commits](https://github.com/spf13/viper/compare/v1.4.0...v1.8.1) --- updated-dependencies: - dependency-name: github.com/spf13/viper dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/spf13/cobra from 0.0.3 to 0.0.7 (#10) Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 0.0.3 to 0.0.7. - [Release notes](https://github.com/spf13/cobra/releases) - [Changelog](https://github.com/spf13/cobra/blob/master/CHANGELOG.md) - [Commits](https://github.com/spf13/cobra/compare/v0.0.3...0.0.7) --- updated-dependencies: - dependency-name: github.com/spf13/cobra dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/aws/aws-sdk-go from 1.39.6 to 1.40.0 (#11) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.39.6 to 1.40.0. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.39.6...v1.40.0) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump crazy-max/ghaction-docker-meta from 3.4.0 to 3.4.1 (#12) Bumps [crazy-max/ghaction-docker-meta](https://github.com/crazy-max/ghaction-docker-meta) from 3.4.0 to 3.4.1. - [Release notes](https://github.com/crazy-max/ghaction-docker-meta/releases) - [Commits](https://github.com/crazy-max/ghaction-docker-meta/compare/v3.4.0...v3.4.1) --- updated-dependencies: - dependency-name: crazy-max/ghaction-docker-meta dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/aws/aws-sdk-go from 1.40.0 to 1.40.1 (#13) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.40.0 to 1.40.1. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.40.0...v1.40.1) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/aws/aws-sdk-go from 1.40.1 to 1.40.7 (#21) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.40.1 to 1.40.7. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.40.1...v1.40.7) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump codecov/codecov-action from 1 to 2.0.2 (#20) Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 1 to 2.0.2. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md) - [Commits](https://github.com/codecov/codecov-action/compare/v1...v2.0.2) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update build.yml * Update mkdocs-deploy.yaml * Update publish.yml * Update mkdocs-deploy.yaml * Bump github.com/aws/aws-sdk-go from 1.40.7 to 1.40.9 (#23) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.40.7 to 1.40.9. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.40.7...v1.40.9) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update .github/workflows/publish.yml * Update .github/workflows/build.yml * Update mkdocs-deploy.yaml * Update build.yml * Update dependabot.yml * Update dependabot.yml * Bump alpine from 3.13 to 3.14.0 (#27) Bumps alpine from 3.13 to 3.14.0. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/aws/aws-sdk-go from 1.40.9 to 1.40.13 (#28) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.40.9 to 1.40.13. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.40.9...v1.40.13) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> 3 years ago			`uses: crazy-max/ghaction-docker-meta@v3`
feat: github actions to publish ecr and docker (#782) * feat: github actions to publish ecr and docker * fix: yaml lint in build Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`with:`
chore: build and push action for ecr and docker (#790) Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`images: ${{ env.REP }}`
feat: github actions to publish ecr and docker (#782) * feat: github actions to publish ecr and docker * fix: yaml lint in build Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`tag-semver: \|`
			`{{version}}`
chore: build and push action for ecr and docker (#790) Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago
			`- name: Build and push - Docker/ECR`
feat: github actions to publish ecr and docker (#782) * feat: github actions to publish ecr and docker * fix: yaml lint in build Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`id: docker_build`
			`uses: docker/build-push-action@v2`
			`with:`
chore: build and push action for ecr and docker (#790) Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`context: .`
chore: add s390x arch (#1097) Signed-off-by: skuethe <56306041+skuethe@users.noreply.github.com> Co-authored-by: Huang Huang <mozillazg101@gmail.com> 2 years ago			`platforms: linux/amd64,linux/arm64,linux/ppc64le,linux/s390x`
feat: github actions to publish ecr and docker (#782) * feat: github actions to publish ecr and docker * fix: yaml lint in build Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`builder: ${{ steps.buildx.outputs.name }}`
			`push: true`
Support arm64 architecture (#1036) * Support arm64 architecture * remove .github/workflows/test_docker.yml Co-authored-by: Yoav Rotem <yoavrotems97@gmail.com> 3 years ago			`build-args: \|`
			`KUBEBENCH_VERSION=${{ steps.get_version.outputs.version }}`
feat: github actions to publish ecr and docker (#782) * feat: github actions to publish ecr and docker * fix: yaml lint in build Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`tags: \|`
Publish to aquasec org on Docker Hub 3 years ago			`${{ env.DOCKERHUB_ALIAS }}/${{ env.REP }}:${{ steps.get_version.outputs.version }}`
chore: build and push action for ecr and docker (#790) Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`public.ecr.aws/${{ env.ALIAS }}/${{ env.REP }}:${{ steps.get_version.outputs.version }}`
Publish to aquasec org on Docker Hub 3 years ago			`${{ env.DOCKERHUB_ALIAS }}/${{ env.REP }}:latest`
chore: build and push action for ecr and docker (#790) Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`public.ecr.aws/${{ env.ALIAS }}/${{ env.REP }}:latest`
			`cache-from: type=local,src=/tmp/.buildx-cache/release`
			`cache-to: type=local,mode=max,dest=/tmp/.buildx-cache/release`
feat: github actions to publish ecr and docker (#782) * feat: github actions to publish ecr and docker * fix: yaml lint in build Co-authored-by: Carol Valencia <krol3@users.noreply.github.com> 3 years ago			`- name: Image digest`
			`run: echo ${{ steps.docker_build.outputs.digest }}`