forked from google/osv-scanner
-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy path.goreleaser-nightly.yml
More file actions
110 lines (107 loc) · 3.94 KB
/
.goreleaser-nightly.yml
File metadata and controls
110 lines (107 loc) · 3.94 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
version: 2
before:
hooks:
- go mod tidy
builds:
- main: ./cmd/osv-scanner/
id: osv-scanner
binary: osv-scanner
env:
# goreleaser does not work with CGO, it could also complicate
# usage by users in CI/CD systems like Terraform Cloud where
# they are unable to install libraries.
- CGO_ENABLED=0
- GO111MODULE=on
mod_timestamp: "{{ .CommitTimestamp }}"
flags:
- -trimpath
ldflags:
- "-s -w"
- "-X github.com/google/osv-scanner/v2/internal/version.OSVVersion={{.Version}}.nightly"
- "-X github.com/google/osv-scanner/v2/cmd/osv-scanner/internal/cmd.commit={{.Commit}}"
- "-X github.com/google/osv-scanner/v2/cmd/osv-scanner/internal/cmd.date={{.CommitDate}}"
goos:
- linux
goarch:
- amd64
- main: ./cmd/osv-scanner/
id: osv-scanner-action
binary: osv-scanner-action
env:
# goreleaser does not work with CGO, it could also complicate
# usage by users in CI/CD systems like Terraform Cloud where
# they are unable to install libraries.
- CGO_ENABLED=0
- GO111MODULE=on
mod_timestamp: "{{ .CommitTimestamp }}"
flags:
- -trimpath
ldflags:
- "-s -w"
- "-X github.com/google/osv-scanner/v2/internal/version.OSVVersion={{.Version}}.nightly_GHAction"
- "-X github.com/google/osv-scanner/v2/cmd/osv-scanner/internal/cmd.commit={{.Commit}}"
- "-X github.com/google/osv-scanner/v2/cmd/osv-scanner/internal/cmd.date={{.CommitDate}}"
goos:
- linux
goarch:
- amd64
- main: ./cmd/osv-reporter/
id: osv-reporter
binary: osv-reporter
env: # osv-reporter for github action
- CGO_ENABLED=0
- GO111MODULE=on
mod_timestamp: "{{ .CommitTimestamp }}"
flags:
- -trimpath
ldflags:
- "-s -w"
- "-X github.com/google/osv-scanner/v2/internal/version.OSVVersion={{.Version}}"
- "-X github.com/google/osv-scanner/v2/cmd/osv-scanner/internal/cmd.commit={{.Commit}}"
- "-X github.com/google/osv-scanner/v2/cmd/osv-scanner/internal/cmd.date={{.CommitDate}}"
goos:
- linux
goarch:
- amd64
dockers:
# Main osv-scanner
- image_templates:
- "ghcr.io/google/osv-scanner:nightly"
dockerfile: goreleaser.dockerfile
use: buildx
build_flag_templates:
- "--pull"
- "--label=org.opencontainers.image.title=osv-scanner"
- "--label=org.opencontainers.image.description=Vulnerability scanner written in Go which uses the data provided by https://osv.dev"
- "--label=org.opencontainers.image.licenses=Apache License 2.0"
- "--label=org.opencontainers.image.created={{.Date}}"
- "--label=org.opencontainers.image.name={{.ProjectName}}"
- "--label=org.opencontainers.image.revision={{.FullCommit}}"
- "--label=org.opencontainers.image.version={{.Version}}"
- "--label=org.opencontainers.image.source={{.GitURL}}"
- "--label=org.opencontainers.image.url={{.GitURL}}"
- "--platform=linux/amd64"
# Github Action
- image_templates:
- "ghcr.io/google/osv-scanner-action:nightly"
dockerfile: goreleaser-action.dockerfile
use: buildx
extra_files:
- exit_code_redirect.sh
build_flag_templates:
- "--pull"
- "--label=org.opencontainers.image.title=osv-scanner-action"
- "--label=org.opencontainers.image.description=Vulnerability scanner written in Go which uses the data provided by https://osv.dev"
- "--label=org.opencontainers.image.licenses=Apache-2.0"
- "--label=org.opencontainers.image.created={{.Date}}"
- "--label=org.opencontainers.image.name={{.ProjectName}}"
- "--label=org.opencontainers.image.revision={{.FullCommit}}"
- "--label=org.opencontainers.image.version={{.Version}}"
- "--label=org.opencontainers.image.source={{.GitURL}}"
- "--label=org.opencontainers.image.url={{.GitURL}}"
- "--platform=linux/amd64"
goarch: amd64
release:
disable: true
changelog:
disable: true