2020-07-25 15:05:10 +00:00
release :
2020-09-29 20:33:33 +00:00
prerelease : auto
2022-05-26 20:44:22 +00:00
draft : false
2020-09-26 03:39:12 +00:00
2022-02-11 19:24:25 +00:00
before :
hooks :
- ./.github/scripts/apple-signing/setup.sh {{ .IsSnapshot }}
2020-07-24 01:26:03 +00:00
builds :
2022-02-11 19:24:25 +00:00
- id : linux-build
binary : grype
2020-07-24 01:26:03 +00:00
goos :
- linux
2021-10-20 21:11:14 +00:00
goarch :
2021-10-25 16:56:55 +00:00
- amd64
2022-01-14 18:13:17 +00:00
- arm64
2022-11-29 22:44:59 +00:00
- ppc64le
2022-08-18 20:28:10 +00:00
- s390x
2022-02-11 19:24:25 +00:00
# set the modified timestamp on the output binary to the git timestamp to ensure a reproducible build
mod_timestamp : &build-timestamp '{{ .CommitTimestamp }}'
env : &build-env
- CGO_ENABLED=0
ldflags : &build-ldflags |
2021-10-20 21:11:14 +00:00
-w
-s
-extldflags '-static'
-X github.com/anchore/grype/internal/version.version={{.Version}}
-X github.com/anchore/grype/internal/version.syftVersion={{.Env.SYFT_VERSION}}
-X github.com/anchore/grype/internal/version.gitCommit={{.Commit}}
-X github.com/anchore/grype/internal/version.buildDate={{.Date}}
2022-02-11 19:24:25 +00:00
-X github.com/anchore/grype/internal/version.gitDescription={{.Summary}}
2021-10-20 21:11:14 +00:00
2022-02-11 19:24:25 +00:00
- id : darwin-build
binary : grype
2020-11-05 13:50:58 +00:00
goos :
- darwin
goarch :
- amd64
2021-10-25 16:56:55 +00:00
- arm64
2022-02-11 19:24:25 +00:00
mod_timestamp : *build-timestamp
env : *build-env
ldflags : *build-ldflags
hooks :
post :
# we must have signing as a build hook instead of the signs section. The signs section must register a new asset, where we want to replace an existing asset.
# a post-build hook has the advantage of not needing to unpackage and repackage a tar.gz with a signed binary
- ./.github/scripts/apple-signing/sign.sh "{{ .Path }}" "{{ .IsSnapshot }}" "{{ .Target }}"
- id : windows-build
binary : grype
goos :
- windows
goarch :
- amd64
mod_timestamp : *build-timestamp
env : *build-env
ldflags : *build-ldflags
2020-11-11 22:30:50 +00:00
archives :
2022-02-11 19:24:25 +00:00
- id : linux-archives
builds :
- linux-build
2022-01-14 18:13:17 +00:00
2022-02-11 19:24:25 +00:00
- id : darwin-archives
2020-11-11 22:30:50 +00:00
builds :
2022-02-11 19:24:25 +00:00
- darwin-build
2020-11-05 13:50:58 +00:00
2022-02-11 19:24:25 +00:00
- id : windows-archives
format : zip
builds :
- windows-build
2020-07-24 01:26:03 +00:00
nfpms :
- license : "Apache 2.0"
maintainer : "Anchore, Inc"
2020-07-24 01:29:05 +00:00
homepage : &website "https://github.com/anchore/grype"
2020-07-24 01:26:03 +00:00
description : &description "A vulnerability scanner for container images and filesystems"
formats :
- rpm
- deb
2020-08-10 22:57:03 +00:00
brews :
- tap :
owner : anchore
name : homebrew-grype
2022-01-14 18:13:17 +00:00
ids :
2022-02-11 19:24:25 +00:00
- darwin-archives
- linux-archives
2020-08-10 22:57:03 +00:00
homepage : *website
description : *description
2022-02-11 19:24:25 +00:00
license : "Apache License 2.0"
