fix(ci): update security workflow to match goreleaser paths (#134 )

* fix(ci): update security workflow to match goreleaser paths * chore(ci): use GOOS and GOARCH in security.yml
fix(ci): docker builds for goreleaser (#133 )
2026-03-18 21:02:19 +00:00 · 2026-01-02 03:30:50 +02:00 · 2026-01-02 03:02:54 +02:00
3 changed files with 32 additions and 7 deletions
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -115,10 +115,24 @@ jobs:

      - name: Build the bin
        shell: bash
-        run: make build
+        run: |
+          # Auto-detect platform (matching GoReleaser's structure)
+          PLATFORM="$(go env GOOS)/$(go env GOARCH)"
+
+          # Create platform-specific directory structure
+          mkdir -p "$PLATFORM"
+
+          # Build binary into the platform directory
+          go build -o "$PLATFORM/gh-action-readme" .
+
+          # Verify binary was created
+          ls -lh "$PLATFORM/gh-action-readme"
+
+          # Export platform for Docker build step
+          echo "TARGETPLATFORM=$PLATFORM" >> "$GITHUB_ENV"

      - name: Build Docker image
-        run: docker build -t gh-action-readme:test .
+        run: docker build --build-arg TARGETPLATFORM=${{ env.TARGETPLATFORM }} -t gh-action-readme:test .

      - name: Run Trivy vulnerability scanner on Docker image
        uses: aquasecurity/trivy-action@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8 # 0.33.1
--- a/.goreleaser.yaml
+++ b/.goreleaser.yaml
@@ -56,9 +56,11 @@ archives:
      - README.md
      - LICENSE*
      - CHANGELOG.md
-      - docs/**/*
-      - templates/**/*
-      - schemas/**/*
+      - docs/*.md
+      - templates/*.tmpl
+      - templates/themes/**/*.tmpl
+      - templates/themes/**/*.adoc
+      - schemas/*.json

 checksum:
  name_template: 'checksums.txt'
@@ -196,6 +198,9 @@ dockers_v2:
    platforms:
      - linux/amd64
      - linux/arm64
+    extra_files:
+      - templates
+      - schemas
    labels:
      org.opencontainers.image.created: "{{.Date}}"
      org.opencontainers.image.title: "{{.ProjectName}}"
--- a/10
+++ b/10
@@ -1,8 +1,14 @@
 # Dockerfile for gh-action-readme
 FROM scratch

-# Copy the binary from the build context
-COPY gh-action-readme /usr/local/bin/gh-action-readme
+# Multi-platform build support
+# See: https://goreleaser.com/customization/dockers_v2/
+# GoReleaser organizes binaries in platform subdirectories (linux/amd64/, linux/arm64/)
+# TARGETPLATFORM arg resolves to the correct platform directory
+ARG TARGETPLATFORM
+
+# Copy the binary from the build context (platform-specific)
+COPY $TARGETPLATFORM/gh-action-readme /usr/local/bin/gh-action-readme

 # Copy templates and schemas
 COPY templates /usr/local/share/gh-action-readme/templates
Author	SHA1	Message	Date
Ismo Vuorinen	5d671a9dc0	fix(ci): update security workflow to match goreleaser paths (#134 ) * fix(ci): update security workflow to match goreleaser paths * chore(ci): use GOOS and GOARCH in security.yml	2026-01-02 03:30:50 +02:00
Ismo Vuorinen	253e14a37b	fix(ci): docker builds for goreleaser (#133 )	2026-01-02 03:02:54 +02:00