From 1a48ca1e74005e4fbf7e332ba6b78989c3127fb2 Mon Sep 17 00:00:00 2001 From: PumpkinSeed Date: Tue, 28 Apr 2026 17:45:38 +0200 Subject: [PATCH 1/2] Add new deploymet --- .github/workflows/docker-build-and-push.yaml | 8 ++++++-- .github/workflows/hardhat-test.yaml | 10 +++++++--- 2 files changed, 13 insertions(+), 5 deletions(-) diff --git a/.github/workflows/docker-build-and-push.yaml b/.github/workflows/docker-build-and-push.yaml index bc23558..1c04730 100644 --- a/.github/workflows/docker-build-and-push.yaml +++ b/.github/workflows/docker-build-and-push.yaml @@ -8,6 +8,7 @@ on: - v[0-9]* branches: - dev + - new-deployment env: KEY: '0xac0974bec39a17e36ba4a6b4d238ff944bacb478cbed5efcae784d7bf4f2ff80' @@ -31,15 +32,18 @@ jobs: name: Build and push Docker image runs-on: ubuntu-latest needs: [test] + permissions: + id-token: write + contents: read steps: - name: Check out code uses: actions/checkout@v4 - name: Configure AWS credentials uses: aws-actions/configure-aws-credentials@v4 with: - aws-access-key-id: ${{ secrets.TF_AWS_ACCESS_KEY_ID }} - aws-secret-access-key: ${{ secrets.TF_AWS_SECRET_ACCESS_KEY }} + role-to-assume: arn:aws:iam::903295530547:role/gh-oidc-build-dlc-solidity aws-region: us-east-1 + role-session-name: gha-${{ github.run_id }} - name: Login to Amazon ECR Public id: login-ecr-public uses: aws-actions/amazon-ecr-login@v2 diff --git a/.github/workflows/hardhat-test.yaml b/.github/workflows/hardhat-test.yaml index 5e4e956..7491201 100644 --- a/.github/workflows/hardhat-test.yaml +++ b/.github/workflows/hardhat-test.yaml @@ -5,6 +5,7 @@ on: branches: - dev - master + - new-deployment types: - opened - reopened @@ -34,16 +35,19 @@ jobs: name: Build and push Docker image runs-on: ubuntu-latest needs: [test] + permissions: + id-token: write + contents: read steps: - name: Check out code uses: actions/checkout@v4 - name: Configure AWS credentials uses: aws-actions/configure-aws-credentials@v4 with: - aws-access-key-id: ${{ secrets.TF_AWS_ACCESS_KEY_ID }} - aws-secret-access-key: ${{ secrets.TF_AWS_SECRET_ACCESS_KEY }} + role-to-assume: arn:aws:iam::903295530547:role/gh-oidc-build-dlc-solidity aws-region: us-east-1 - - name: Login to Amazon ECR Public + role-session-name: gha-${{ github.run_id }} + - name: Login to Amazon ECR id: login-ecr uses: aws-actions/amazon-ecr-login@v2 - name: Set outputs From 296c90748607daf6b85a4c9993461cd05d1e1a2e Mon Sep 17 00:00:00 2001 From: PumpkinSeed Date: Tue, 28 Apr 2026 17:52:43 +0200 Subject: [PATCH 2/2] Remove temp branches --- .github/workflows/docker-build-and-push.yaml | 1 - .github/workflows/hardhat-test.yaml | 1 - 2 files changed, 2 deletions(-) diff --git a/.github/workflows/docker-build-and-push.yaml b/.github/workflows/docker-build-and-push.yaml index 1c04730..1a6b5ef 100644 --- a/.github/workflows/docker-build-and-push.yaml +++ b/.github/workflows/docker-build-and-push.yaml @@ -8,7 +8,6 @@ on: - v[0-9]* branches: - dev - - new-deployment env: KEY: '0xac0974bec39a17e36ba4a6b4d238ff944bacb478cbed5efcae784d7bf4f2ff80' diff --git a/.github/workflows/hardhat-test.yaml b/.github/workflows/hardhat-test.yaml index 7491201..72a1272 100644 --- a/.github/workflows/hardhat-test.yaml +++ b/.github/workflows/hardhat-test.yaml @@ -5,7 +5,6 @@ on: branches: - dev - master - - new-deployment types: - opened - reopened