-
Notifications
You must be signed in to change notification settings - Fork 22
/
.goreleaser.yaml
92 lines (80 loc) · 1.69 KB
/
.goreleaser.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
# Copyright 2023 The OpenVEX Authors
# SPDX-License-Identifier: Apache-2.0
project_name: vexctl
env:
- GO111MODULE=on
- COSIGN_YES=true
before:
hooks:
- go mod tidy
- /bin/bash -c 'if [ -n "$(git --no-pager diff --exit-code go.mod go.sum)" ]; then exit 1; fi'
gomod:
proxy: true
builds:
- id: binaries
binary: vexctl-{{ .Os }}-{{ .Arch }}
no_unique_dist_dir: true
main: .
flags:
- -trimpath
mod_timestamp: '{{ .CommitTimestamp }}'
goos:
- linux
- darwin
- windows
goarch:
- amd64
- arm64
- arm
- s390x
- ppc64le
goarm:
- '7'
ignore:
- goos: windows
goarch: arm64
- goos: windows
goarch: arm
- goos: windows
goarch: s390x
- goos: windows
goarch: ppc64le
ldflags:
- "{{ .Env.LDFLAGS }}"
env:
- CGO_ENABLED=0
signs:
- id: vexctl-keyless
signature: "${artifact}.sig"
certificate: "${artifact}.pem"
cmd: cosign
args: ["sign-blob", "--output-signature", "${artifact}.sig", "--output-certificate", "${artifact}.pem", "${artifact}"]
artifacts: all
archives:
- format: binary
name_template: "{{ .Binary }}"
allow_different_binary_count: true
sboms:
- id: vexctl
cmd: bom
args:
- generate
- "--output"
- "vexctl-bom.json.spdx"
- "-d"
- "../"
- "-c"
- "../.vexctl-bom-config.yaml"
- "--format"
- "json"
artifacts: any
documents:
- "vexctl-bom.json.spdx"
checksum:
name_template: "{{ .ProjectName }}_checksums.txt"
snapshot:
name_template: SNAPSHOT-{{ .ShortCommit }}
release:
prerelease: auto
changelog:
use: github-native