Commit 218adc2
authored
push signed artifacts to new connector registry (#34)
Updated connector release workflow for signing artifacts and pushing to
the new c1 connector registry. The registry will provide a central,
consistent way to distribute binaries and container images to customers
across all public and private connectors.
This PR makes a number of changes and and will necessitate a new major
release version bump.
- new goreleaser binary config file that signs binaries with cosign,
generates sboms, checksums, then uploads to the registry s3 using OIDC
- new consolidated goreleaser docker config file that signs and builds a
multi-arch image, lambda image, and digests - both images are
conditional based on input bools
- dockerfiles are now build from centralized templates here in this
repo, not used from files in each repo
- go scripts for building and uploading a release manifest.json the
registry s3 using
- protos for consistent manifest and stable structs in this workflow and
available for other repos/scripts to import for use
For a connector repo to upgrade to the new workflow:
- needs to be added in ops for OIDC permissions
- needs to upgrade to the new pending release workflow verison (likely
v4)
- nice to have but not required: remove the Dockerfile and
Dockerfile.lambda from it's own repo since they're no longer used in v4+
<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->
## Summary by CodeRabbit
* **New Features**
* Added support for artifact release manifests capturing version, name,
organization, and semantic version.
* Tracks release and update timestamps for artifacts.
* Stores per-artifact attachments: assets with media type, size,
checksum, and SBOM links.
* Records release signatures, certificates, and container image
references.
<sub>✏️ Tip: You can customize this high-level summary in your review
settings.</sub>
<!-- end of auto-generated comment: release notes by coderabbit.ai -->1 parent 05705f3 commit 218adc2
21 files changed
Lines changed: 2481 additions & 152 deletions
File tree
- .github/workflows
- cmd
- extract-images
- generate-manifest
- merge-manifests
- pb/artifacts/v1
- proto/artifacts/v1
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
| 1 | + | |
| 2 | + | |
| 3 | + | |
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
| 1 | + | |
| 2 | + | |
| 3 | + | |
| 4 | + | |
0 commit comments