force pull base image before building docker image (#1120) #31

Workflow file for this run

.github/workflows/cacert-publish.yml at 261e10a

	name: Publish ca-certificates
	on:
	push:
	branches: [ master ]
	paths:
	- 'linux/ca-certificates/**'
	- '.github/workflows/cacert-publish.yml'

	permissions:
	contents: read

	jobs:
	publish-ca-certificates:
	if: github.repository == 'adoptium/installer'
	name: "Publish ca-certificates"
	runs-on: ubuntu-latest
	defaults:
	run:
	working-directory: ./linux

	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
	with:
	disable-sudo: true
	egress-policy: block
	allowed-endpoints: >
	adoptium.jfrog.io:443
	api.github.com:443
	auth.docker.io:443
	deb.debian.org:80
	github.com:443
	objects.githubusercontent.com:443
	production.cloudflare.docker.com:443
	registry-1.docker.io:443
	releases-cdn.jfrog.io:443
	releases.jfrog.io:443
	services.gradle.org:443

	- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

	- uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # v4.7.0
	with:
	java-version: '17'
	java-package: jdk
	architecture: x64
	distribution: 'temurin'

	- uses: jfrog/setup-jfrog-cli@f748a0599171a192a2668afee8d0497f7c1069df # v4.5.6
	env:
	JF_URL: https://adoptium.jfrog.io
	JF_USER: ${{ secrets.ARTIFACTORY_USER }}
	JF_PASSWORD: ${{ secrets.ARTIFACTORY_PASSWORD }}

	- name: Build
	run: \|
	export _JAVA_OPTIONS="-Xmx4G"
	./gradlew --parallel :ca-certificates:package --stacktrace

	- name: Check if deb file exists in Artifactory
	id: check-deb
	run: \|
	FILE=$(ls ca-certificates/debian/build/ospackage/*.deb)
	echo "File to upload: ${FILE}"
	FILE_EXISTS=$(jf rt s --count=true "deb/pool/main/a/adoptium-ca-certificates/$(basename $FILE)")
	if [[ "$FILE_EXISTS" == "0" ]]; then
	echo file_exists=false >> "$GITHUB_OUTPUT"
	fi

	- name: Upload deb file to Artifactory
	if: steps.check-deb.outputs.file_exists == 'false'
	run: \|
	DISTRO_LIST="trixie,bookworm,buster,oracular,noble,jammy,focal,bionic"
	FILE=$(ls ca-certificates/debian/build/ospackage/*.deb)
	# Upload cacerts deb file
	jf rt u "$FILE" "deb/pool/main/a/adoptium-ca-certificates/$(basename ${FILE})" --flat=true
	# Add deb.distribution properties
	jf rt sp "deb/pool/main/a/adoptium-ca-certificates/$(basename ${FILE})" "deb.distribution=${DISTRO_LIST};deb.architecture=all;deb.component=main"

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

force pull base image before building docker image (#1120) #31

Workflow file

force pull base image before building docker image (#1120) #31

Jobs

Run details

Workflow file for this run