Skip to content

Commit 7cc4926

Browse files
chore(ci): migrate github_release workflow to GitHub keyless auth
Signed-off-by: Matías Insaurralde <matias@chainloop.dev>
1 parent 6d93571 commit 7cc4926

1 file changed

Lines changed: 1 addition & 8 deletions

File tree

.github/workflows/github_release.yaml

Lines changed: 1 addition & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -6,16 +6,10 @@ on:
66
tag:
77
type: string
88
required: true
9-
secrets:
10-
chainloop_token:
11-
required: true
129

13-
permissions: {}
10+
permissions: read-all
1411

1512
jobs:
16-
# This reusable workflow inspects if the given workflow_name exists on Chainloop. If the Workflow does not exist
17-
# it will create one with an empty contract ready for operators to be filled. Otherwise, if found, it will just
18-
# be ignored and the process will continue. For this to work it's using a pre-created API Token
1913
release:
2014
name: Record release from GitHub
2115
runs-on: ubuntu-latest
@@ -24,7 +18,6 @@ jobs:
2418
contents: write
2519
id-token: write # required for SLSA provenance - https://docs.chainloop.dev/guides/slsa/
2620
env:
27-
CHAINLOOP_TOKEN: ${{ secrets.chainloop_token }}
2821
CHAINLOOP_WORKFLOW_NAME: chainloop-vault-release
2922
CHAINLOOP_PROJECT: chainloop
3023
GH_TOKEN: ${{ github.token }}

0 commit comments

Comments
 (0)