From bf99764eacf3f016bba0181302ad22b9b47d07e5 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Javier=20Rodr=C3=ADguez?= Date: Fri, 10 Jan 2025 14:41:22 +0100 Subject: [PATCH] fix(github): Move env from top level to steps (#1725) Signed-off-by: Javier Rodriguez --- .github/workflows/scorecards.yml | 16 ++++++++++++---- 1 file changed, 12 insertions(+), 4 deletions(-) diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index 1e3a5f4eb..629a7dc23 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -28,10 +28,6 @@ jobs: id-token: write contents: read actions: read - env: - CHAINLOOP_WORKFLOW_NAME: "chainloop-vault-scorecards" - CHAINLOOP_PROJECT: "chainloop" - CHAINLOOP_TOKEN: ${{ secrets.CHAINLOOP_TOKEN }} steps: - name: Install Chainloop @@ -46,6 +42,10 @@ jobs: - name: Initialize Attestation run: | chainloop attestation init --workflow $CHAINLOOP_WORKFLOW_NAME --project $CHAINLOOP_PROJECT + env: + CHAINLOOP_WORKFLOW_NAME: "chainloop-vault-scorecards" + CHAINLOOP_PROJECT: "chainloop" + CHAINLOOP_TOKEN: ${{ secrets.CHAINLOOP_TOKEN }} - name: "Run analysis" uses: ossf/scorecard-action@0864cf19026789058feabb7e87baa5f140aac736 # v2.3.1 @@ -87,18 +87,26 @@ jobs: - name: Attest analysis run: | chainloop attestation add --name sarif-results --value results.sarif + env: + CHAINLOOP_TOKEN: ${{ secrets.CHAINLOOP_TOKEN }} - name: Finish and Record Attestation if: ${{ success() }} run: | chainloop attestation push + env: + CHAINLOOP_TOKEN: ${{ secrets.CHAINLOOP_TOKEN }} - name: Mark attestation as failed if: ${{ failure() }} run: | chainloop attestation reset + env: + CHAINLOOP_TOKEN: ${{ secrets.CHAINLOOP_TOKEN }} - name: Mark attestation as cancelled if: ${{ cancelled() }} run: | chainloop attestation reset --trigger cancellation + env: + CHAINLOOP_TOKEN: ${{ secrets.CHAINLOOP_TOKEN }} \ No newline at end of file