1
0
mirror of https://github.com/goreleaser/goreleaser.git synced 2025-01-10 03:47:03 +02:00
goreleaser/internal/pipe/sign/sign_docker.go
Carlos Alexandro Becker 874d698564
feat: add healthcheck cmd (#3826)
here's an idea: `goreleaser healthcheck`

It'll check if the needed dependencies (docker, git, etc) are available
in the path... this way users can preemptively run it before releasing
or to debug issues.

What do you think?

Here's how it looks like:

<img width="1007" alt="CleanShot 2023-03-02 at 23 24 26@2x"
src="https://user-images.githubusercontent.com/245435/222615682-d9cd0733-d900-43d1-9166-23b2be589b3a.png">

---------

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
2023-03-03 09:50:15 -03:00

83 lines
2.2 KiB
Go

package sign
import (
"fmt"
"github.com/goreleaser/goreleaser/internal/artifact"
"github.com/goreleaser/goreleaser/internal/ids"
"github.com/goreleaser/goreleaser/internal/pipe"
"github.com/goreleaser/goreleaser/internal/semerrgroup"
"github.com/goreleaser/goreleaser/pkg/context"
)
// Pipe that signs docker images and manifests.
type DockerPipe struct{}
func (DockerPipe) String() string { return "signing docker images" }
func (DockerPipe) Skip(ctx *context.Context) bool {
return ctx.SkipSign || len(ctx.Config.DockerSigns) == 0
}
func (DockerPipe) Dependencies(ctx *context.Context) []string {
var cmds []string
for _, s := range ctx.Config.DockerSigns {
cmds = append(cmds, s.Cmd)
}
return cmds
}
// Default sets the Pipes defaults.
func (DockerPipe) Default(ctx *context.Context) error {
ids := ids.New("docker_signs")
for i := range ctx.Config.DockerSigns {
cfg := &ctx.Config.DockerSigns[i]
if cfg.Cmd == "" {
cfg.Cmd = "cosign"
}
if len(cfg.Args) == 0 {
cfg.Args = []string{"sign", "--key=cosign.key", "${artifact}@${digest}", "--yes"}
}
if cfg.Artifacts == "" {
cfg.Artifacts = "none"
}
if cfg.ID == "" {
cfg.ID = "default"
}
ids.Inc(cfg.ID)
}
return ids.Validate()
}
// Publish signs and pushes the docker images signatures.
func (DockerPipe) Publish(ctx *context.Context) error {
g := semerrgroup.New(ctx.Parallelism)
for i := range ctx.Config.DockerSigns {
cfg := ctx.Config.DockerSigns[i]
g.Go(func() error {
var filters []artifact.Filter
switch cfg.Artifacts {
case "images":
filters = append(filters, artifact.ByType(artifact.DockerImage))
case "manifests":
filters = append(filters, artifact.ByType(artifact.DockerManifest))
case "all":
filters = append(filters, artifact.Or(
artifact.ByType(artifact.DockerImage),
artifact.ByType(artifact.DockerManifest),
))
case "none": // TODO(caarlos0): remove this
return pipe.ErrSkipSignEnabled
default:
return fmt.Errorf("invalid list of artifacts to sign: %s", cfg.Artifacts)
}
if len(cfg.IDs) > 0 {
filters = append(filters, artifact.ByIDs(cfg.IDs...))
}
return sign(ctx, cfg, ctx.Artifacts.Filter(artifact.And(filters...)).List())
})
}
return g.Wait()
}