File tree Expand file tree Collapse file tree 2 files changed +5
-3
lines changed Expand file tree Collapse file tree 2 files changed +5
-3
lines changed Original file line number Diff line number Diff line change @@ -1182,6 +1182,7 @@ jobs:
11821182
11831183name : SBOM Generation and Attestation
11841184 if : github.ref == 'refs/heads/main'
1185+ continue-on-error : true
11851186 env :
11861187 COSIGN_EXPERIMENTAL : 1
11871188 run : |
@@ -1200,7 +1201,7 @@ jobs:
12001201 syft "${IMAGE}" -o spdx-json > "${SBOM_FILE}"
12011202
12021203 echo "Attesting SBOM to image: ${IMAGE}"
1203- cosign clean "${IMAGE}"
1204+ cosign clean --force=true "${IMAGE}"
12041205 cosign attest --type spdxjson \
12051206 --predicate "${SBOM_FILE}" \
12061207 --yes \
Original file line number Diff line number Diff line change @@ -498,6 +498,7 @@ jobs:
498498
499499 - name : SBOM Generation and Attestation
500500 if : ${{ !inputs.dry_run }}
501+ continue-on-error : true
501502 env :
502503 COSIGN_EXPERIMENTAL : " 1"
503504 run : |
@@ -509,7 +510,7 @@ jobs:
509510
510511 # Attest SBOM to multi-arch image
511512 echo "Attesting SBOM to multi-arch image: ${{ steps.build_docker.outputs.multiarch_image }}"
512- cosign clean "${{ steps.build_docker.outputs.multiarch_image }}"
513+ cosign clean --force=true "${{ steps.build_docker.outputs.multiarch_image }}"
513514 cosign attest --type spdxjson \
514515 --predicate coder_${{ steps.version.outputs.version }}_sbom.spdx.json \
515516 --yes \
@@ -522,7 +523,7 @@ jobs:
522523 syft "${latest_tag}" -o spdx-json > coder_latest_sbom.spdx.json
523524
524525 echo "Attesting SBOM to latest image: ${latest_tag}"
525- cosign clean "${latest_tag}"
526+ cosign clean --force=true "${latest_tag}"
526527 cosign attest --type spdxjson \
527528 --predicate coder_latest_sbom.spdx.json \
528529 --yes \
You can’t perform that action at this time.
0 commit comments