4040
4141 steps :
4242 - name : Checkout repository
43- uses : actions/checkout@v6
43+ uses : actions/checkout@v7
4444
4545 # Install the cosign tool except on PR
4646 # https://github.com/sigstore/cosign-installer
@@ -54,13 +54,13 @@ jobs:
5454 # multi-platform images and export cache
5555 # https://github.com/docker/setup-buildx-action
5656 - name : Set up Docker Buildx
57- uses : docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd # v4.0 .0
57+ uses : docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1 .0
5858
5959 # Login against a Docker registry except on PR
6060 # https://github.com/docker/login-action
6161 - name : Log into registry ${{ env.REGISTRY }}
6262 if : github.event_name != 'pull_request'
63- uses : docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1 .0
63+ uses : docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4.2 .0
6464 with :
6565 registry : ${{ env.REGISTRY }}
6666 username : ${{ github.actor }}
7070 # https://github.com/docker/metadata-action
7171 - name : Extract Docker metadata
7272 id : meta
73- uses : docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf # v6.0 .0
73+ uses : docker/metadata-action@80c7e94dd9b9319bd5eb7a0e0fe9291e23a2a2e9 # v6.1 .0
7474 with :
7575 images : ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
7676 tags : |
@@ -106,7 +106,7 @@ jobs:
106106 # https://github.com/docker/build-push-action
107107 - name : Build and push Docker image
108108 id : build-and-push
109- uses : docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f # v7.1 .0
109+ uses : docker/build-push-action@f9f3042f7e2789586610d6e8b85c8f03e5195baf # v7.2 .0
110110 with :
111111 context : .
112112 push : ${{ github.event_name != 'pull_request' }}
@@ -117,6 +117,9 @@ jobs:
117117 platforms : linux/amd64,linux/arm64
118118 build-args : |
119119 VERSION=${{ github.ref_name }}
120+ secrets : |
121+ oauth_client_id=${{ secrets.OAUTH_CLIENT_ID }}
122+ oauth_client_secret=${{ secrets.OAUTH_CLIENT_SECRET }}
120123
121124 # Sign the resulting Docker image digest except on PRs.
122125 # This will only write to the public Rekor transparency log when the Docker
0 commit comments