Sets up the Kosli CLI for GitHub Actions runners
This action sets up the Kosli CLI, on GitHub's hosted Actions runners.
This action can be run on ubuntu-latest, windows-latest, and macos-latest GitHub Actions runners,
and will install and expose a specified version of the kosli CLI on the runner environment.
Setup the kosli CLI (installs the latest release by default):
steps:
- uses: kosli-dev/setup-cli-action@v3A specific version of the kosli CLI can be installed:
steps:
- name: setup-kosli-cli
uses: kosli-dev/setup-cli-action@v3
with:
version: 2.11.43To explicitly pin to the newest published release at runtime, pass latest:
steps:
- name: setup-kosli-cli
uses: kosli-dev/setup-cli-action@v3
with:
version: latestThe action supports the following inputs:
version: The version ofkoslito install. Accepts a semver (e.g.2.11.43) or the aliaslatest, which resolves to the newest GitHub release ofkosli-dev/cliat runtime. Defaults tolatest.github-token: Token used to authenticate the GitHub API call that resolveslatest. Defaults to${{ github.token }}; normally you do not need to set this.
version: The resolvedkosliCLI version that was installed. Whenversion: latestis used, this will contain the concrete semver (e.g.2.12.0) and can be referenced by later steps viasteps.<id>.outputs.version.
env:
KOSLI_DRY_RUN: ${{ vars.KOSLI_DRY_RUN }} # false
KOSLI_API_TOKEN: ${{ secrets.KOSLI_API_TOKEN }}
KOSLI_ORG: my-org
KOSLI_FLOW: my-flow
KOSLI_TRAIL: ${{ github.sha }}
jobs:
build-image:
runs-on: ubuntu-latest
steps:
- ...
- name: Build and push Docker image to ECR
id: build
uses: docker/build-push-action@v5
with:
push: true
...
- name: Setup kosli
uses: kosli-dev/setup-cli-action@v3
- name: Attest ECR image provenance
run:
kosli attest artifact "${IMAGE_NAME}" --artifact-type=ociMIT.