Merge pull request #1348 from sigstore/sign/migration-take-two

Signing event: sign/migration-take-two

.github/workflows/create-signing-events.yml

@@ -1,9 +1,8 @@
 name: TUF-on-CI create Signing events
 
 on:
-  # disabled during migration
-  #schedule:
-  #  - cron:  '17 1,7,13,19 * * *'
+  schedule:
+    - cron: '17 1,7,13,19 * * *'
   workflow_dispatch:
 
 permissions: {}
@@ -16,7 +15,7 @@ jobs:
       actions: 'write' # for dispatching signing event workflow
     steps:
       - name: Create signing events for offline version bumps
-        uses: theupdateframework/tuf-on-ci/actions/create-signing-events@89d2dad3c8b626dde7a9e65b036ca35d11ab8b2a # v0.12.0
+        uses: theupdateframework/tuf-on-ci/actions/create-signing-events@27c49c016591c7cfea57f6b15296f714a5c4a5f6 # v0.13.0
         with:
           token: ${{ secrets.TUF_ON_CI_TOKEN || secrets.GITHUB_TOKEN }}
 
@@ -28,7 +27,7 @@ jobs:
       issues: 'write' # for modifying Issues
     steps:
       - name: Update the issue for the workflow
-        uses: theupdateframework/tuf-on-ci/actions/update-issue@89d2dad3c8b626dde7a9e65b036ca35d11ab8b2a # v0.12.0
+        uses: theupdateframework/tuf-on-ci/actions/update-issue@27c49c016591c7cfea57f6b15296f714a5c4a5f6 # v0.13.0
         with:
           token: ${{ secrets.TUF_ON_CI_TOKEN || secrets.GITHUB_TOKEN }}
           success: ${{ !contains(needs.*.result, 'failure') }}

.github/workflows/ci-test.yml → .github/workflows/lint.yml

@@ -13,31 +13,13 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-name: CI Test
+name: Lint
 
 on:
   push:
-    paths-ignore:
-      - 'ceremony/**'
   pull_request:
-    paths-ignore:
-      - 'ceremony/**'
 
 jobs:
-  golangci:
-    name: lint
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-      - uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
-        with:
-          go-version-file: './go.mod'
-          check-latest: true
-      - name: golangci-lint
-        uses: golangci/golangci-lint-action@aaa42aa0628b4ae2578232a66b541047968fac86 # v6.1.0
-        with:
-          version: v1.59
-
   yamllint:
     runs-on: ubuntu-latest
     steps:
@@ -65,40 +47,6 @@ jobs:
         with:
           actionlint_flags: -color -shellcheck=
 
-  test:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-      - uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
-        with:
-          go-version-file: './go.mod'
-          check-latest: true
-      - name: install deps
-        run: |
-          sudo apt-get install libpcsclite-dev
-      - name: Test
-        run: go test -tags=pivkey -v ./...
-      - name: Ensure no files were modified as a result of the build
-        run: git update-index --refresh && git diff-index --quiet HEAD -- || git diff --exit-code
-
-  build:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-      - uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
-        with:
-          go-version-file: './go.mod'
-          check-latest: true
-      - name: install deps
-        run: |
-          sudo apt-get install libpcsclite-dev
-      - name: build verification
-        run: go build -o verify ./cmd/verify/
-      - name: build TUF script
-        run: go build -o tuf -tags=pivkey ./cmd/tuf
-      - name: build test script
-        run: go build -o keygen -tags=pivkey ./tests/keygen
-
   shellcheck:
     name: Shellcheck
     runs-on: ubuntu-latest