Skip to content

Update write permissions and log into ghcr.io for release #942

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Apr 6, 2022
Merged

Update write permissions and log into ghcr.io for release #942

merged 1 commit into from
Apr 6, 2022

Conversation

wagoodman
Copy link
Contributor

The last release failed with:

   ⨯ release failed after 1192.75s error=docker images: failed to publish artifacts: failed to push ghcr.io/anchore/syft:latest: exit status 1: The push refers to repository [ghcr.io/anchore/syft]

This PR addresses the gap by:

  • adding GHCR creds specifically for release
  • explicitly running docker login for ghcr.io
  • enabling package write permissions for the release job

@wagoodman
update write permissions and log into ghcr.io
1ac6b2c 
Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
spiffcs
spiffcs approved these changes Apr 6, 2022
View reviewed changes
Copy link
Contributor

@spiffcs spiffcs left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved with small comment

.github/workflows/release.yaml
@@ -128,6 +130,8 @@ jobs:
- name: Build & publish release artifacts
run: make release
env:
GHCR_USERNAME: ${{ github.actor }}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

Can we sync offline to confirm these values are correctly being assigned at this part in the release process?

@github-actions
Copy link

github-actions bot commented Apr 6, 2022

Benchmark Test Results

Benchmark results from the latest changes vs base branch 
name                                                       old time/op    new time/op    delta
ImagePackageCatalogers/ruby-gemspec-cataloger-2              1.14ms ± 0%    1.42ms ± 3%  +24.80%  (p=0.008 n=5+5)
ImagePackageCatalogers/python-package-cataloger-2            2.91ms ± 0%    3.62ms ±12%  +24.46%  (p=0.016 n=4+5)
ImagePackageCatalogers/php-composer-installed-cataloger-2     943µs ± 1%    1140µs ± 2%  +20.88%  (p=0.008 n=5+5)
ImagePackageCatalogers/javascript-package-cataloger-2         631µs ± 1%     769µs ± 2%  +21.85%  (p=0.008 n=5+5)
ImagePackageCatalogers/dpkgdb-cataloger-2                     743µs ± 2%     906µs ± 2%  +21.90%  (p=0.008 n=5+5)
ImagePackageCatalogers/rpmdb-cataloger-2                      667µs ± 1%     808µs ± 1%  +21.06%  (p=0.008 n=5+5)
ImagePackageCatalogers/java-cataloger-2                      12.2ms ± 1%    15.4ms ± 1%  +26.75%  (p=0.008 n=5+5)
ImagePackageCatalogers/apkdb-cataloger-2                     1.18ms ± 1%    1.47ms ± 4%  +24.63%  (p=0.008 n=5+5)
ImagePackageCatalogers/go-module-binary-cataloger-2          2.07µs ± 1%    2.70µs ± 3%  +30.51%  (p=0.008 n=5+5)

name                                                       old alloc/op   new alloc/op   delta
ImagePackageCatalogers/ruby-gemspec-cataloger-2               184kB ± 0%     184kB ± 0%   -0.25%  (p=0.008 n=5+5)
ImagePackageCatalogers/python-package-cataloger-2             896kB ± 0%     895kB ± 0%     ~     (p=0.151 n=5+5)
ImagePackageCatalogers/php-composer-installed-cataloger-2     196kB ± 0%     196kB ± 0%     ~     (p=0.095 n=5+5)
ImagePackageCatalogers/javascript-package-cataloger-2         140kB ± 0%     140kB ± 0%     ~     (p=0.690 n=5+5)
ImagePackageCatalogers/dpkgdb-cataloger-2                     175kB ± 0%     175kB ± 0%     ~     (p=0.151 n=5+5)
ImagePackageCatalogers/rpmdb-cataloger-2                      163kB ± 0%     163kB ± 0%     ~     (p=0.841 n=5+5)
ImagePackageCatalogers/java-cataloger-2                      3.19MB ± 0%    3.19MB ± 0%     ~     (p=0.841 n=5+5)
ImagePackageCatalogers/apkdb-cataloger-2                     1.24MB ± 0%    1.24MB ± 0%   -0.03%  (p=0.032 n=5+5)
ImagePackageCatalogers/go-module-binary-cataloger-2            672B ± 0%      672B ± 0%     ~     (all equal)

name                                                       old allocs/op  new allocs/op  delta
ImagePackageCatalogers/ruby-gemspec-cataloger-2               3.66k ± 0%     3.66k ± 0%     ~     (all equal)
ImagePackageCatalogers/python-package-cataloger-2             14.8k ± 0%     14.8k ± 0%     ~     (p=0.151 n=5+5)
ImagePackageCatalogers/php-composer-installed-cataloger-2     4.94k ± 0%     4.94k ± 0%     ~     (p=0.556 n=5+4)
ImagePackageCatalogers/javascript-package-cataloger-2         2.72k ± 0%     2.72k ± 0%     ~     (all equal)
ImagePackageCatalogers/dpkgdb-cataloger-2                     3.93k ± 0%     3.93k ± 0%     ~     (all equal)
ImagePackageCatalogers/rpmdb-cataloger-2                      4.01k ± 0%     4.01k ± 0%     ~     (all equal)
ImagePackageCatalogers/java-cataloger-2                       52.2k ± 0%     52.2k ± 0%     ~     (p=0.508 n=5+5)
ImagePackageCatalogers/apkdb-cataloger-2                      4.82k ± 0%     4.81k ± 0%     ~     (p=0.571 n=4+5)
ImagePackageCatalogers/go-module-binary-cataloger-2            15.0 ± 0%      15.0 ± 0%     ~     (all equal)

@wagoodman wagoodman enabled auto-merge (squash) April 6, 2022 21:14
@wagoodman wagoodman merged commit e415bb2 into main Apr 6, 2022
@wagoodman wagoodman deleted the fix-ghcr-upload branch April 6, 2022 21:15
spiffcs added a commit that referenced this pull request May 2, 2022
@spiffcs
Merge branch 'main' into 835-keyless-attestation-upgrade
cb25858 
* main: (31 commits)
  reduce noise of log output (#976)
  add version info and remove double config call (#977)
  Rename syft-id to package-id (#970)
  update to cyclonedx-go 0.5.2 (#971)
  refactor command package to remove globals and add dependency injection
  fix: #953 Derive language from pURL - https://github.com/anchore/syft… (#957)
  Fix typo in CPE-parsing error (#966)
  Preserve syft IDs on SBOM decode (#963)
  Update GitHub format package_url and correlator (#961)
  Ensure SPDXIDs are valid (#955)
  Auto-PR needs to run go mod tidy (#958)
  Add workflow for automatic PR for new stereoscope updates (#954)
  Minor readme update to correct format information (#948)
  Update spdx22json to only take uppercase checksum algorithm (#946)
  add additional vendors for springframework (#945)
  Add digest property to parent and nested java package metadata (#941)
  Update write permissions and log into ghcr.io for release (#942)
  Retry auth URL lookup without docker credentialhelper workaround (#939)
  Ensure that all cyclonedx components have bom-refs (#914)
  Additionally publish docker images to GHCR (#934)
  ...

Signed-off-by: Christopher Phillips <christopher.phillips@anchore.com>
rigzba21 pushed a commit to rigzba21/syft that referenced this pull request May 5, 2022
@wagoodman @rigzba21
Update write permissions and log into ghcr.io for release (anchore#942)
8342270 
Signed-off-by: rigzba21 <jonathan.velando01@gmail.com>
GijsCalis pushed a commit to GijsCalis/syft that referenced this pull request Feb 19, 2024
@wagoodman
Update write permissions and log into ghcr.io for release (anchore#942)
1f4755c
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kzantow kzantow kzantow approved these changes

@spiffcs spiffcs spiffcs approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@wagoodman @kzantow @spiffcs