From a988f8e657cb506bb23192a41de02c6d4274ebdb Mon Sep 17 00:00:00 2001 From: Joe Harrison <53116754+sudo-kraken@users.noreply.github.com> Date: Thu, 16 Oct 2025 14:12:17 +0100 Subject: [PATCH] fix: update github repo refs for docker hub (#2053) * fix: update github repo refs for docker hub * ci: updated wf to use env var for the docker hub space --- .github/workflows/release.yml | 17 ++++++++++------- .../advanced/verifying-signed-images.mdx | 2 +- 2 files changed, 11 insertions(+), 8 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 586528b0e..35188a3ce 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -13,6 +13,9 @@ concurrency: group: release-${{ github.ref }} cancel-in-progress: true +env: + DOCKER_HUB: seerr/seerr + jobs: changelog: name: Generate changelog @@ -177,8 +180,8 @@ jobs: if: ${{ !contains(env.VERSION, '-') }} run: | docker buildx imagetools create \ - -t ${{ github.repository }}:latest \ - ${{ github.repository }}:${{ env.VERSION }} + -t ${{ env.DOCKER_HUB }}:latest \ + ${{ env.DOCKER_HUB }}:${{ env.VERSION }} docker buildx imagetools create \ -t ghcr.io/${{ github.repository }}:latest \ @@ -223,7 +226,7 @@ jobs: - name: Sign images run: | cosign sign --recursive "ghcr.io/${{ github.repository }}@${{ needs.publish.outputs.image_digest }}" - cosign sign --recursive "${{ github.repository }}@${{ needs.publish.outputs.image_digest }}" + cosign sign --recursive "${{ env.DOCKER_HUB }}@${{ needs.publish.outputs.image_digest }}" - name: Generate SBOMs run: | @@ -231,7 +234,7 @@ jobs: "ghcr.io/${{ github.repository }}@${{ needs.publish.outputs.image_digest }}" trivy image --format cyclonedx --output seerr-dockerhub-image-${{ env.VERSION }}.sbom \ - "${{ github.repository }}@${{ needs.publish.outputs.image_digest }}" + "${{ env.DOCKER_HUB }}@${{ needs.publish.outputs.image_digest }}" - name: Attest SBOMs run: | @@ -243,7 +246,7 @@ jobs: cosign attest \ --type cyclonedx \ --predicate seerr-dockerhub-image-${{ env.VERSION }}.sbom \ - "${{ github.repository }}@${{ needs.publish.outputs.image_digest }}" + "${{ env.DOCKER_HUB }}@${{ needs.publish.outputs.image_digest }}" - name: Upload SBOMs uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 @@ -271,7 +274,7 @@ jobs: --certificate-identity "https://github.com/${{ github.workflow_ref }}" \ --certificate-oidc-issuer "https://token.actions.githubusercontent.com" - cosign verify "${{ github.repository }}@${{ needs.publish.outputs.image_digest }}" \ + cosign verify "${{ env.DOCKER_HUB }}@${{ needs.publish.outputs.image_digest }}" \ --certificate-identity "https://github.com/${{ github.workflow_ref }}" \ --certificate-oidc-issuer "https://token.actions.githubusercontent.com" @@ -282,7 +285,7 @@ jobs: --certificate-identity "https://github.com/${{ github.workflow_ref }}" \ --certificate-oidc-issuer "https://token.actions.githubusercontent.com" > /dev/null - cosign verify-attestation "${{ github.repository }}@${{ needs.publish.outputs.image_digest }}" \ + cosign verify-attestation "${{ env.DOCKER_HUB }}@${{ needs.publish.outputs.image_digest }}" \ --type cyclonedx \ --certificate-identity "https://github.com/${{ github.workflow_ref }}" \ --certificate-oidc-issuer "https://token.actions.githubusercontent.com" > /dev/null diff --git a/docs/using-jellyseerr/advanced/verifying-signed-images.mdx b/docs/using-jellyseerr/advanced/verifying-signed-images.mdx index b05b2d255..5ebc40643 100644 --- a/docs/using-jellyseerr/advanced/verifying-signed-images.mdx +++ b/docs/using-jellyseerr/advanced/verifying-signed-images.mdx @@ -58,7 +58,7 @@ Verification should always be performed using the image digest (SHA256). ```bash -docker buildx imagetools inspect docker.io/seerr-team/seerr:v2.7.4 --format '{{json .Manifest.Digest}}' | tr -d '"' +docker buildx imagetools inspect ghcr.io/seerr-team/seerr:v2.7.4 --format '{{json .Manifest.Digest}}' | tr -d '"' ```