2020-07-25 15:05:10 +00:00
|
|
|
release:
|
|
|
|
# If set to auto, will mark the release as not ready for production
|
|
|
|
# in case there is an indicator for this in the tag e.g. v1.0.0-rc1
|
|
|
|
# If set to true, will mark the release as not ready for production.
|
2020-09-29 20:33:33 +00:00
|
|
|
prerelease: auto
|
2020-07-25 15:05:10 +00:00
|
|
|
|
2020-09-26 03:39:12 +00:00
|
|
|
# If set to true, will not auto-publish the release. This is done to allow us to review the changelog before publishing.
|
|
|
|
draft: true
|
|
|
|
|
2020-11-05 13:50:58 +00:00
|
|
|
# This ensures any macOS signed artifacts get included with the release.
|
|
|
|
extra_files:
|
|
|
|
- glob: "./dist/*.dmg"
|
2020-07-25 15:05:10 +00:00
|
|
|
|
2020-07-24 01:26:03 +00:00
|
|
|
builds:
|
2020-07-24 01:29:05 +00:00
|
|
|
- binary: grype
|
2020-11-05 13:50:58 +00:00
|
|
|
id: grype
|
2020-07-24 01:26:03 +00:00
|
|
|
env:
|
|
|
|
- CGO_ENABLED=0
|
|
|
|
goos:
|
|
|
|
# windows not supported yet (due to jotframe)
|
|
|
|
# - windows
|
|
|
|
- linux
|
|
|
|
goarch:
|
|
|
|
- amd64
|
|
|
|
# Set the modified timestamp on the output binary to the git timestamp (to ensure a reproducible build)
|
|
|
|
mod_timestamp: '{{ .CommitTimestamp }}'
|
|
|
|
ldflags: |
|
|
|
|
-w
|
|
|
|
-s
|
|
|
|
-extldflags '-static'
|
2020-07-24 01:29:05 +00:00
|
|
|
-X github.com/anchore/grype/internal/version.version={{.Version}}
|
|
|
|
-X github.com/anchore/grype/internal/version.gitCommit={{.Commit}}
|
|
|
|
-X github.com/anchore/grype/internal/version.buildDate={{.Date}}
|
|
|
|
-X github.com/anchore/grype/internal/version.gitTreeState={{.Env.BUILD_GIT_TREE_STATE}}
|
2020-11-05 13:50:58 +00:00
|
|
|
# For more info on this macOS build, see: https://github.com/mitchellh/gon#usage-with-goreleaser
|
|
|
|
- binary: grype
|
|
|
|
id: grype-macos
|
|
|
|
env:
|
|
|
|
- CGO_ENABLED=0
|
|
|
|
goos:
|
|
|
|
- darwin
|
|
|
|
goarch:
|
|
|
|
- amd64
|
|
|
|
# Set the modified timestamp on the output binary to the git timestamp (to ensure a reproducible build)
|
|
|
|
mod_timestamp: '{{ .CommitTimestamp }}'
|
|
|
|
ldflags: |
|
|
|
|
-w
|
|
|
|
-s
|
|
|
|
-extldflags '-static'
|
|
|
|
-X github.com/anchore/grype/internal/version.version={{.Version}}
|
|
|
|
-X github.com/anchore/grype/internal/version.gitCommit={{.Commit}}
|
|
|
|
-X github.com/anchore/grype/internal/version.buildDate={{.Date}}
|
|
|
|
-X github.com/anchore/grype/internal/version.gitTreeState={{.Env.BUILD_GIT_TREE_STATE}}
|
|
|
|
hooks:
|
|
|
|
post: ./.github/scripts/mac-sign-and-notarize.sh "{{.IsSnapshot}}" "gon.hcl" "./dist/grype_{{.Tag}}_{{.Target}}.dmg"
|
|
|
|
|
|
|
|
signs:
|
|
|
|
- artifacts: checksum
|
|
|
|
args: ["--output", "${signature}", "--detach-sign", "${artifact}"]
|
2020-07-24 01:26:03 +00:00
|
|
|
|
|
|
|
nfpms:
|
|
|
|
- license: "Apache 2.0"
|
|
|
|
maintainer: "Anchore, Inc"
|
2020-07-24 01:29:05 +00:00
|
|
|
homepage: &website "https://github.com/anchore/grype"
|
2020-07-24 01:26:03 +00:00
|
|
|
description: &description "A vulnerability scanner for container images and filesystems"
|
|
|
|
formats:
|
|
|
|
- rpm
|
|
|
|
- deb
|
|
|
|
|
2020-08-10 22:57:03 +00:00
|
|
|
brews:
|
|
|
|
- tap:
|
|
|
|
owner: anchore
|
|
|
|
name: homebrew-grype
|
|
|
|
homepage: *website
|
|
|
|
description: *description
|
2020-07-24 01:26:03 +00:00
|
|
|
|
|
|
|
archives:
|
|
|
|
- format: tar.gz
|
2020-11-05 13:50:58 +00:00
|
|
|
builds:
|
|
|
|
- grype # i.e. Linux only
|
2020-07-24 01:26:03 +00:00
|
|
|
format_overrides:
|
|
|
|
- goos: windows
|
|
|
|
format: zip
|