Wavyzz/ci-workflows
2
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Allow ssh entitlement for bake

Browse Source
This commit is contained in:
estebanthi
2026-01-05 13:02:11 +01:00
parent 91ab1aaac0
commit 4f00812999
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
.github/workflows/docker-build-publish.yml vendored
View File

@@ -111,6 +111,10 @@ jobs:
if [ -n "${SSH_AUTH_SOCK:-}" ]; then if [ -n "${SSH_AUTH_SOCK:-}" ]; then
SSH_BAKE_JSON='["default"]' SSH_BAKE_JSON='["default"]'
fi fi
BAKE_ALLOW_FLAGS=()
if [ -n "${SSH_AUTH_SOCK:-}" ]; then
BAKE_ALLOW_FLAGS+=(--allow=ssh)
fi
RAW_REF="${{ github.ref }}" RAW_REF="${{ github.ref }}"
SHA_FULL="${{ github.sha }}" SHA_FULL="${{ github.sha }}"
@@ -211,7 +215,7 @@ jobs:
BAKE_FILE=$(mktemp) BAKE_FILE=$(mktemp)
echo "$BAKE_JSON" > "$BAKE_FILE" echo "$BAKE_JSON" > "$BAKE_FILE"
docker buildx bake --file "$BAKE_FILE" --push docker buildx bake --file "$BAKE_FILE" --push "${BAKE_ALLOW_FLAGS[@]}"
rm -f "$BAKE_FILE" rm -f "$BAKE_FILE"
while read -r img; do while read -r img; do