Merge pull request #1510 from kubernetes-sigs/dependabot/github_actio… #44
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: publish_helm_chart | |
on: | |
push: | |
branches: | |
- main | |
- master | |
paths: | |
- ".github/workflows/chart.yaml" | |
- "charts/**" | |
# List of all permissions: https://docs.github.com/en/actions/reference/authentication-in-a-workflow#permissions-for-the-github_token | |
# We need write permission for contents to be able to publish the chart | |
permissions: | |
contents: write | |
jobs: | |
deploy: | |
runs-on: ubuntu-20.04 | |
steps: | |
- name: Harden Runner | |
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1 | |
with: | |
egress-policy: audit | |
- uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.0.0 | |
with: | |
submodules: true | |
fetch-depth: 0 | |
- name: Publish Helm chart | |
uses: stefanprodan/helm-gh-pages@0ad2bb377311d61ac04ad9eb6f252fb68e207260 # v1.7.0 | |
with: | |
# GitHub automatically creates a GITHUB_TOKEN secret to use in your workflow. You can use the GITHUB_TOKEN to authenticate in a workflow run. | |
# See https://docs.github.com/en/actions/reference/authentication-in-a-workflow#about-the-github_token-secret | |
token: ${{ secrets.GITHUB_TOKEN }} | |
charts_dir: charts | |
target_dir: charts | |
linting: off |