1
0
Fork 0
mirror of https://github.com/imjasonh/testoidc synced 2026-07-08 02:35:09 +00:00

Use GitHub Actions token to authorize push

This alleviates the need to store a personal access token in a secret. The GitHub Action worker is authorized to push packages due to the `packages: write` permission.
This commit is contained in:
Jason Hall 2021-10-01 16:19:33 -04:00 committed by GitHub
parent 54834a048d
commit 7b962a4eec
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -22,7 +22,7 @@ jobs:
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.PERSONAL_ACCESS_TOKEN }}
password: ${{ github.token }}
- name: Install Cosign
uses: sigstore/cosign-installer@main
- name: Build and Push container images