release-scripts contains scripting assets related to distributing carvel's binaries to the various distribution channels. i.e. Homebrew, carvel.dev install.sh script etc.
for e.g.
- run: |
curl -X POST https://api.github.com/repos/carvel-dev/release-scripts/dispatches \
-H 'Accept: application/vnd.github.everest-preview+json' \
-u ${{ secrets.ACCESS_TOKEN }} \
--data '{"event_type": "<YourToolName>_released", "client_payload": { "tagName": "${{ github.event.release.tag_name }}", "repo": "${{ github.repository }}", "toolName": "<YourToolName>" }}'
Need to change in the above:
ACCESS_TOKEN
this secret needs to be one the format username@accessToken and the user needs to have access to execute workflows in this repository<YourToolName>
should be replace with the tool namereleases.yaml
and add the following entry to it:- product: YourProductName
Note: This automated release process will make the tool installable via installation script from the website
./hack/build.sh
script that will build the binariesSLACK_WEBHOOK_URL
that points to a slack webhook or slack workflow.
name: Trivy CVE Dependency Scanner
on: schedule:
jobs: trivy-scan: uses: carvel-dev/release-scripts/.github/workflows/trivy-scan.yml@main with: repo: carvel-dev/imgpkg tool: imgpkg goVersion: 1.17.0 secrets: githubToken: ${{ secrets.GITHUB_TOKEN }} slackWebhookURL: ${{ secrets.SLACK_WEBHOOK_URL }}