-
Notifications
You must be signed in to change notification settings - Fork 880
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
WIP: start porting release logic to GoReleaser
Goals: - _At least_ the publishing of the artifacts in the same formats as previous releases - Reproducable builds - SBOM inclusion - Checksums file inclusion - Cosign - SLSA compliant Signed-off-by: Hidde Beydals <hidde@hhh.computer>
- Loading branch information
Showing
3 changed files
with
89 additions
and
4 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,4 +1,5 @@ | ||
target | ||
dist/ | ||
target/ | ||
Cargo.lock | ||
vendor/ | ||
coverage.txt | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,84 @@ | ||
# yaml-language-server: $schema=https://goreleaser.com/static/schema.json | ||
|
||
project_name: sops | ||
|
||
# xref: https://goreleaser.com/customization/build/ | ||
builds: | ||
- # ID of the build. | ||
id: "binary" | ||
|
||
# Path to the main.go file or package to build. | ||
main: ./cmd/sops | ||
|
||
# Binary name. | ||
# Can be a path (e.g. `bin/app`) to wrap the binary in a directory. | ||
binary: sops | ||
|
||
# Custom flags. | ||
# Templates can be used here. | ||
# xref: https://goreleaser.com/customization/templates/ | ||
flags: | ||
- -v | ||
- -trimpath | ||
|
||
# Custom ldflags. | ||
# Templates can be used here. | ||
# xref: https://goreleaser.com/customization/templates/ | ||
ldflags: | ||
- -s | ||
- -w | ||
- -X "go.mozilla.org/sops/v3/version.Version={{ .Version }}" | ||
|
||
# Custom environment variables to be set during the build. | ||
# Invalid environment variables will be ignored. | ||
# Templates can be used here. | ||
# xref: https://goreleaser.com/customization/templates/ | ||
env: | ||
- CGO_ENABLED=0 | ||
|
||
# GOOS to build the binary for. | ||
# xref: https://golang.org/doc/install/source#environment | ||
goos: | ||
- linux | ||
- darwin | ||
- windows | ||
|
||
# GOARCH to build the binary for. | ||
# xref: https://golang.org/doc/install/source#environment | ||
goarch: | ||
- amd64 | ||
- arm64 | ||
|
||
# Modified timestamp on the binary, set to ensure reproducible builds. | ||
mod_timestamp: "{{ .CommitTimestamp }}" | ||
|
||
# xref: https://goreleaser.com/customization/verifiable_builds/ | ||
gomod: | ||
# Proxy a module from proxy.golang.org, making the builds verifiable. | ||
# This will only be effective if running against a tag. Snapshots will ignore | ||
# this setting. | ||
proxy: true | ||
|
||
# If proxy is true, use these environment variables when running `go mod` | ||
# commands (namely, `go mod tidy`). | ||
env: | ||
- GOPROXY=https://proxy.golang.org,direct | ||
- GOSUMDB=sum.golang.org | ||
|
||
# Sets the `-mod` flag value. | ||
mod: mod | ||
|
||
# xref: https://goreleaser.com/customization/checksum/ | ||
checksum: | ||
# Template for the checksum file name. | ||
# Templates can be used here. | ||
# xref: https://goreleaser.com/customization/templates/ | ||
name_template: "{{ .ProjectName }}_checksums.txt" | ||
|
||
# Algorithm to be used. | ||
# Accepted options are sha256, sha512, sha1, crc32, md5, sha224 and sha384. | ||
algorithm: sha256 | ||
|
||
# IDs of artifacts to include in the checksums file. | ||
ids: | ||
- binary |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters