From fec1f1e733c9ac2c6823992c50d2236d09969569 Mon Sep 17 00:00:00 2001 From: Brian DeHamer Date: Thu, 29 Feb 2024 11:57:49 -0800 Subject: [PATCH] refactor action inputs (#14) Signed-off-by: Brian DeHamer --- action.yml | 14 ++---- .../action.yml | 14 ++++++ .../action.yml | 43 ------------------- 3 files changed, 18 insertions(+), 53 deletions(-) create mode 100644 generate-build-provenance-predicate/action.yml delete mode 100644 generate-build-provenance-statement/action.yml diff --git a/action.yml b/action.yml index 6e0bb6f..68750d9 100644 --- a/action.yml +++ b/action.yml @@ -39,14 +39,8 @@ outputs: runs: using: 'composite' steps: - - uses: actions/attest-build-provenance/generate-build-provenance-statement@main - id: generate-build-provenance-statement - with: - github-token: ${{ inputs.github-token }} - subject-path: ${{ inputs.subject-path }} - subject-digest: ${{ inputs.subject-digest }} - subject-name: ${{ inputs.subject-name }} - push-to-registry: ${{ inputs.push-to-registry }} + - uses: actions/attest-build-provenance/generate-build-provenance-predicate@input-refactor + id: generate-build-provenance-predicate - uses: actions/attest@main id: attest with: @@ -55,5 +49,5 @@ runs: subject-digest: ${{ inputs.subject-digest }} subject-name: ${{ inputs.subject-name }} push-to-registry: ${{ inputs.push-to-registry }} - predicate-type: ${{ steps.generate-build-provenance-statement.outputs.predicate-type }} - predicate: ${{ steps.generate-build-provenance-statement.outputs.predicate }} + predicate-type: ${{ steps.generate-build-provenance-predicate.outputs.predicate-type }} + predicate: ${{ steps.generate-build-provenance-predicate.outputs.predicate }} diff --git a/generate-build-provenance-predicate/action.yml b/generate-build-provenance-predicate/action.yml new file mode 100644 index 0000000..ae5b0bd --- /dev/null +++ b/generate-build-provenance-predicate/action.yml @@ -0,0 +1,14 @@ +name: 'Generate Build Provenance Statement' +description: 'Generate provenance statement for build artifacts' +author: 'GitHub' + +outputs: + predicate: + description: > + The JSON-serialized of the attestation predicate. + predicate-type: + description: > + URI identifying the type of the predicate. +runs: + using: node20 + main: ../dist/index.js diff --git a/generate-build-provenance-statement/action.yml b/generate-build-provenance-statement/action.yml deleted file mode 100644 index ef42c75..0000000 --- a/generate-build-provenance-statement/action.yml +++ /dev/null @@ -1,43 +0,0 @@ -name: 'Generate Build Provenance Statement' -description: 'Generate provenance statement for build artifacts' -author: 'GitHub' - -inputs: - github-token: - description: > - The GitHub token used to make authenticated API requests. - default: ${{ github.token }} - required: false - subject-path: - description: > - Path to the artifact for which provenance will be generated. Must specify - exactly one of "subject-path" or "subject-digest". - required: false - subject-digest: - description: > - Digest of the subject for which provenance will be generated. Must be in - the form "algorithm:hex_digest" (e.g. "sha256:abc123..."). Must specify - exactly one of "subject-path" or "subject-digest". - required: false - subject-name: - description: > - Subject name as it should appear in the provenance statement. Required - unless "subject-path" is specified, in which case it will be inferred from - the path. - push-to-registry: - description: > - Whether to push the provenance statement to the image registry. Requires - that the "subject-name" parameter specify the fully-qualified image name - and that the "subject-digest" parameter be specified. Defaults to false. - default: false - required: false -outputs: - predicate: - description: > - The JSON-serialized of the attestation predicate. - predicate-type: - description: > - URI identifying the type of the predicate. -runs: - using: node20 - main: ../dist/index.js \ No newline at end of file