From 79e93b1c85456f82a8dfe362af6842d03294ce66 Mon Sep 17 00:00:00 2001 From: Christian Steinle Date: Thu, 20 Mar 2025 11:48:26 +0100 Subject: [PATCH] Use gitea secrets. --- .gitea/workflows/release.yml | 20 +++++++++----------- 1 file changed, 9 insertions(+), 11 deletions(-) diff --git a/.gitea/workflows/release.yml b/.gitea/workflows/release.yml index 7ee9429..d7b1dce 100644 --- a/.gitea/workflows/release.yml +++ b/.gitea/workflows/release.yml @@ -9,9 +9,7 @@ on: - cron: '0 0 * * 0' env: - USER: chris - PASS: q',\H(Od:G3).Xv<#!5P - + IMAGE: /docker/nginx-fpm jobs: Build-and-release-image: @@ -28,34 +26,34 @@ jobs: - name: Log into registry uses: docker/login-action@v3 with: - registry: https://cs-git.ddnss.de - username: ${{ env.USER }} - password: ${{ env.PASS }} + registry: ${{ secrets.REGISTRY_URL }} + username: ${{ secrets.USER }} + password: ${{ secrets.PASS }} - name: Extract Docker metadata id: meta uses: docker/metadata-action@v5 with: - images: cs-git.ddnss.de/docker/nginx-fpm + images: ${{ secrets.REGISTRY_URL }}${{ env.IMAGE }} - name: Build and push Docker image uses: docker/build-push-action@v4 env: ACTIONS_RUNTIME_TOKEN: '' with: - tags: cs-git.ddnss.de/docker/nginx-fpm:latest + tags: ${{ secrets.REGISTRY_URL }}${{ env.IMAGE }}:latest push: true - name: Scan image uses: anchore/scan-action@v6 id: scan with: - image: "cs-git.ddnss.de/docker/nginx-fpm:latest" + image: ${{ secrets.REGISTRY_URL }}${{ env.IMAGE }}:latest fail-build: false output-format: table severity-cutoff: critical - registry-username: ${{ env.USER }} - registry-password: ${{ env.PASS }} + registry-username: ${{ secrets.USER }} + registry-password: ${{ secrets.PASS }} grype-version: 'v0.90.0' - name: Inspect file