coder/.github/actions/install-syft/action.yaml at 1a774ab7ce99063a2e01beb94de3fcbccaf84dbe - coder - Gitea: Git with a cup of tea

shishantbiswas/coder

mirror of https://github.com/coder/coder.git synced 2026-06-05 05:58:20 +00:00

Files

T

M Atif Ali 51cfec3261 chore: reuse syft and cosign install actions across workflows (#16981 )

This pull request adds new GitHub Actions for installing `cosign` and
`syft`, and updates the CI, release, and security workflows.

**New Actions:**  
- [`install-cosign`](.github/actions/install-cosign/action.yaml):
Installs `cosign` with a configurable version.
- [`install-syft`](.github/actions/install-syft/action.yaml): Installs
`syft` with a configurable version.

**Workflow Updates:**  
- CI, release, and security workflows now use `install-cosign` and
`install-syft`.

2025-03-25 01:22:17 +00:00

11 lines

306 B

YAML

Raw Blame History

 name: "Install syft"
 description: |
   Downloads Syft to the Action tool cache and provides a reference.
 runs:
   using: "composite"
   steps:
     - name: Install syft
       uses: anchore/sbom-action/download-syft@f325610c9f50a54015d37c8d16cb3b0e2c8f4de0 # v0.18.0
       with:
         syft-version: "v1.20.0"