From 5bdf40074ee227cb0711385a07e53f322a942fd3 Mon Sep 17 00:00:00 2001
From: Martijn de Boer <git@sexybiggetje.nl>
Date: Fri, 5 Jan 2024 13:49:48 +0100
Subject: [PATCH] Update docker-publish.yml

Obtain DIGEST for signing
---
 .github/workflows/docker-publish.yml | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml
index 0bea5e8..e671e62 100644
--- a/.github/workflows/docker-publish.yml
+++ b/.github/workflows/docker-publish.yml
@@ -52,7 +52,12 @@ jobs:
 
       - name: Build and push Docker image
         id: build-and-push
-        run: docker-compose build && docker-compose push
+        run: |
+          docker-compose build
+          DOCKER_IMAGE=$(docker-compose images --format "{{.Repository}}:{{.Tag}}")
+          docker-compose push
+          DIGEST=$(docker inspect --format='{{index .RepoDigests 0}}' ${DOCKER_IMAGE})
+          echo "DIGEST=${DIGEST}" >> $GITHUB_ENV
         env:
           DOCKER_BUILDKIT: 1
     
@@ -60,5 +65,5 @@ jobs:
         if: ${{ github.event_name != 'pull_request' }}
         env:
           TAGS: ${{ steps.meta.outputs.tags }}
-          DIGEST: ${{ steps.build-and-push.outputs.digest }}
+          DIGEST: ${{ env.DIGEST }}
         run: echo "${TAGS}" | xargs -I {} cosign sign --yes {}@${DIGEST}