From 02c74b0d37f9d34f5c601505e98797693f53a98d Mon Sep 17 00:00:00 2001 From: Aurel Canciu Date: Thu, 6 Jul 2023 09:27:06 +0200 Subject: [PATCH 1/2] Fix GHA backport.yaml workflow job perms Fixing backport workflow permissions. Signed-off-by: Aurel Canciu --- .github/workflows/backport.yaml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backport.yaml b/.github/workflows/backport.yaml index 4bcca6b19..75c7f772c 100644 --- a/.github/workflows/backport.yaml +++ b/.github/workflows/backport.yaml @@ -10,6 +10,9 @@ permissions: jobs: pull-request: runs-on: ubuntu-latest + permissions: + contents: write + pull-requests: write if: github.event.pull_request.state == 'closed' && github.event.pull_request.merged && (github.event_name != 'labeled' || startsWith('backport:', github.event.label.name)) steps: - name: Checkout From 680843fd698cd78f4834f8e50e93f220bd7d7935 Mon Sep 17 00:00:00 2001 From: Aurel Canciu Date: Thu, 6 Jul 2023 09:48:47 +0200 Subject: [PATCH 2/2] Explicitly echo -E in GHA release.yml Signed-off-by: Aurel Canciu --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 258f523e8..c2080c7e7 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -107,7 +107,7 @@ jobs: env: ARTIFACTS: "${{ steps.run-goreleaser.outputs.artifacts }}" run: | - hashes=$(echo $ARTIFACTS | jq --raw-output '.[] | {name, "digest": (.extra.Digest // .extra.Checksum)} | select(.digest) | {digest} + {name} | join(" ") | sub("^sha256:";"")' | base64 -w0) + hashes=$(echo -E $ARTIFACTS | jq --raw-output '.[] | {name, "digest": (.extra.Digest // .extra.Checksum)} | select(.digest) | {digest} + {name} | join(" ") | sub("^sha256:";"")' | base64 -w0) echo "hashes=$hashes" >> $GITHUB_OUTPUT image_url=fluxcd/${{ env.CONTROLLER }}:${{ steps.prep.outputs.version }}