mirror of
https://github.com/imjasonh/testoidc
synced 2026-07-08 02:35:09 +00:00
Use GitHub Actions token to authorize push
This alleviates the need to store a personal access token in a secret. The GitHub Action worker is authorized to push packages due to the `packages: write` permission.
This commit is contained in:
parent
54834a048d
commit
7b962a4eec
1 changed files with 1 additions and 1 deletions
2
.github/workflows/keyless-sign.yml
vendored
2
.github/workflows/keyless-sign.yml
vendored
|
|
@ -22,7 +22,7 @@ jobs:
|
|||
with:
|
||||
registry: ghcr.io
|
||||
username: ${{ github.repository_owner }}
|
||||
password: ${{ secrets.PERSONAL_ACCESS_TOKEN }}
|
||||
password: ${{ github.token }}
|
||||
- name: Install Cosign
|
||||
uses: sigstore/cosign-installer@main
|
||||
- name: Build and Push container images
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue