permissions #41

	name: release

	on:
	push:
	tags:
	- '*'

	permissions:
	contents: write # needed to write releases
	id-token: write # needed for keyless signing
	packages: write # needed for ghcr access

	jobs:
	# test:
	# runs-on: "ubuntu-latest"
	# steps:
	# - uses: actions/checkout@v3
	# - name: Set up Go
	# uses: actions/setup-go@v3
	# with:
	# go-version: 1.19.x
	# - name: Install Ginkgo v2
	# run: go install github.com/onsi/ginkgo/v2/ginkgo@latest
	# - name: Test
	# run: ginkgo ./...

	release:
	# needs: [test]
	env:
	GO111MODULE: on
	name: Release
	runs-on: "ubuntu-latest"
	steps:
	- uses: actions/checkout@v3
	with:
	fetch-depth: 0

	- name: Version
	run: echo "VERSION=$(cat VERSION)" >> $GITHUB_ENV

	- name: Set up Go
	uses: actions/setup-go@v3
	with:
	go-version-file: 'go.mod'
	go-version: 1.19.x

	- name: Install syft
	run: go install github.com/anchore/syft/cmd/syft@latest

	- name: Install cosign
	uses: sigstore/cosign-installer@v3.1.1

	- name: Run GoReleaser
	uses: goreleaser/goreleaser-action@v4
	with:
	distribution: goreleaser
	version: latest
	args: release --clean
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

Provide feedback