From 33d8e455a4383529ebac4b01d7db626a8504bbe2 Mon Sep 17 00:00:00 2001 From: jmeridth Date: Mon, 27 Jan 2025 18:23:27 -0600 Subject: [PATCH] chore: update workflows - [x] update ospo-reusable-workflows version - prevents auto-labeler creating draft releases - [x] update permissions - release-image, allows for attestations, if enabled - auto-labler, content: read Signed-off-by: jmeridth --- .github/release-drafter.yml | 3 ++- .github/workflows/auto-labeler.yml | 2 +- .github/workflows/pr-title.yml | 2 +- .github/workflows/release.yml | 12 ++++++------ 4 files changed, 10 insertions(+), 9 deletions(-) diff --git a/.github/release-drafter.yml b/.github/release-drafter.yml index fb2ec4b..f786f73 100644 --- a/.github/release-drafter.yml +++ b/.github/release-drafter.yml @@ -36,11 +36,12 @@ version-resolver: minor: labels: - "enhancement" - - "fix" + - "feature" - "minor" patch: labels: - "documentation" + - "fix" - "maintenance" - "patch" default: patch diff --git a/.github/workflows/auto-labeler.yml b/.github/workflows/auto-labeler.yml index 7e41954..e386029 100644 --- a/.github/workflows/auto-labeler.yml +++ b/.github/workflows/auto-labeler.yml @@ -11,7 +11,7 @@ jobs: permissions: contents: write pull-requests: write - uses: github/ospo-reusable-workflows/.github/workflows/auto-labeler.yaml@1406afbf7a795f706f04644059cecbb3b2f0c1a0 + uses: github/ospo-reusable-workflows/.github/workflows/auto-labeler.yaml@6a0a6d0de2227f9d5d11af90a87b2e2fd6b5463d with: config-name: release-drafter.yml secrets: diff --git a/.github/workflows/pr-title.yml b/.github/workflows/pr-title.yml index 70f1974..c8aee01 100644 --- a/.github/workflows/pr-title.yml +++ b/.github/workflows/pr-title.yml @@ -12,6 +12,6 @@ jobs: contents: read pull-requests: read statuses: write - uses: github/ospo-reusable-workflows/.github/workflows/pr-title.yaml@1406afbf7a795f706f04644059cecbb3b2f0c1a0 + uses: github/ospo-reusable-workflows/.github/workflows/pr-title.yaml@6a0a6d0de2227f9d5d11af90a87b2e2fd6b5463d secrets: github-token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index f551ece..e0463db 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -12,7 +12,7 @@ jobs: permissions: contents: write pull-requests: read - uses: github/ospo-reusable-workflows/.github/workflows/release.yaml@53a9c808122ffaae9af948f72139fb4bd44ab74c + uses: github/ospo-reusable-workflows/.github/workflows/release.yaml@6a0a6d0de2227f9d5d11af90a87b2e2fd6b5463d with: publish: true release-config-name: release-drafter.yml @@ -21,11 +21,11 @@ jobs: release_image: needs: release permissions: - contents: write - discussions: write + contents: read packages: write - pull-requests: read - uses: github/ospo-reusable-workflows/.github/workflows/release-image.yaml@53a9c808122ffaae9af948f72139fb4bd44ab74c + id-token: write + attestations: write + uses: github/ospo-reusable-workflows/.github/workflows/release-image.yaml@6a0a6d0de2227f9d5d11af90a87b2e2fd6b5463d with: image-name: ${{ github.repository_owner }}/issue_metrics full-tag: ${{ needs.release.outputs.full-tag }} @@ -40,7 +40,7 @@ jobs: permissions: contents: read discussions: write - uses: github/ospo-reusable-workflows/.github/workflows/release-discussion.yaml@53a9c808122ffaae9af948f72139fb4bd44ab74c + uses: github/ospo-reusable-workflows/.github/workflows/release-discussion.yaml@6a0a6d0de2227f9d5d11af90a87b2e2fd6b5463d with: full-tag: ${{ needs.release.outputs.full-tag }} body: ${{ needs.release.outputs.body }}