fix: use shell var for jq --arg title in deploy-dev/deploy-uat (CAR-1436)

Merge pull request 'ci(CAR-1423): two-stage load->push to fix auth manifest push (unknown)' (#41 ) from betty/car-1423-two-stage-build into dev
ci(CAR-1423): two-stage load->push to fix auth manifest push (#41)
2026-06-22 23:56:09 +00:00 · 2026-06-22 23:26:26 +00:00 · 2026-06-22 23:25:50 +00:00 · 2026-06-22 22:25:35 +00:00 · 2026-06-22 22:24:15 +00:00
1 changed files with 15 additions and 3 deletions
@@ -59,11 +59,21 @@ jobs:
            type=raw,value=${{ steps.calver.outputs.version }},enable=${{ github.ref == 'refs/heads/main' }}
            type=raw,value=latest,enable=${{ github.ref == 'refs/heads/main' }}

-      - name: Build and push Docker image
+      - name: Build Docker image
+        uses: docker/build-push-action@v6
+        with:
+          context: .
+          load: true
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
+
+      - name: Push Docker image
        uses: docker/build-push-action@v6
        with:
          context: .
          push: true
+          provenance: false
+          sbom: false
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}

@@ -132,7 +142,8 @@ jobs:
            echo "::notice::Refusing to push directly to protected branch — falling back to contents API"
            exit 0
          fi
-          PR_BODY=$(jq -n --arg head "cartsnitch:${BRANCH}" --arg base dev --arg title ("ci(dev): update auth image (" + env.GITHUB_SHA[:12] + ")") --arg body "Bumps apps/overlays/dev/kustomization.yaml auth newTag to \`${{ steps.tag.outputs.tag }}\` from cartsnitch/auth CI build $GITHUB_SHA." \
+          TITLE="ci(dev): update auth image (${GITHUB_SHA::12})"
+          PR_BODY=$(jq -n --arg head "cartsnitch:${BRANCH}" --arg base dev --arg title "$TITLE" --arg body "Bumps apps/overlays/dev/kustomization.yaml auth newTag to \`${{ steps.tag.outputs.tag }}\` from cartsnitch/auth CI build $GITHUB_SHA." \
            '{head: $head, base: $base, title: $title, body: $body}')
          PR_JSON=$(curl -sS -X POST \
            -H "Authorization: token ${CI_GITEA_TOKEN}" \
@@ -233,7 +244,8 @@ jobs:
            echo "::notice::Refusing to push directly to protected branch — falling back to contents API"
            exit 0
          fi
-          PR_BODY=$(jq -n --arg head "cartsnitch:${BRANCH}" --arg base uat --arg title ("ci(uat): update auth image (" + env.GITHUB_SHA[:12] + ")") --arg body "Bumps apps/overlays/uat/kustomization.yaml auth newTag to \`${{ steps.tag.outputs.tag }}\` from cartsnitch/auth CI build $GITHUB_SHA." \
+          TITLE="ci(uat): update auth image (${GITHUB_SHA::12})"
+          PR_BODY=$(jq -n --arg head "cartsnitch:${BRANCH}" --arg base uat --arg title "$TITLE" --arg body "Bumps apps/overlays/uat/kustomization.yaml auth newTag to \`${{ steps.tag.outputs.tag }}\` from cartsnitch/auth CI build $GITHUB_SHA." \
            '{head: $head, base: $base, title: $title, body: $body}')
          PR_JSON=$(curl -sS -X POST \
            -H "Authorization: token ${CI_GITEA_TOKEN}" \
Author	SHA1	Message	Date
Barcode Betty	80a2ea54be	fix: use shell var for jq --arg title in deploy-dev/deploy-uat (CAR-1436) CI / build-and-push (pull_request) Has been skipped Details CI / deploy-dev (pull_request) Has been skipped Details CI / deploy-uat (pull_request) Has been skipped Details	2026-06-22 23:56:09 +00:00
Barcode Betty	9c4f9b95a9	Merge pull request 'ci(CAR-1423): two-stage load->push to fix auth manifest push (unknown)' (#41 ) from betty/car-1423-two-stage-build into dev CI / build-and-push (push) Successful in 11s Details CI / deploy-uat (push) Has been skipped Details CI / deploy-dev (push) Failing after 3s Details CI / build-and-push (pull_request) Has been skipped Details CI / deploy-dev (pull_request) Has been skipped Details CI / deploy-uat (pull_request) Has been skipped Details ci(CAR-1423): two-stage load->push to fix auth manifest push (#41)	2026-06-22 23:26:26 +00:00
Barcode Betty	e22010a907	ci(CAR-1423): two-stage load->push to fix auth manifest push (unknown) CI / build-and-push (pull_request) Has been skipped Details CI / deploy-dev (pull_request) Has been skipped Details CI / deploy-uat (pull_request) Has been skipped Details	2026-06-22 23:25:50 +00:00
Barcode Betty	5cdb4c63b8	Merge pull request 'ci(CAR-1423): disable provenance/sbom attestations on auth build-push' (#40 ) from betty/car-1423-disable-provenance into dev CI / build-and-push (push) Failing after 19s Details CI / deploy-uat (push) Has been skipped Details CI / deploy-dev (push) Successful in 2s Details ci(CAR-1423): disable provenance/sbom attestations on auth build-push (#40)	2026-06-22 22:25:35 +00:00
Barcode Betty	4819d9c7ac	ci(CAR-1423): disable provenance/sbom attestations on auth build-push CI / build-and-push (pull_request) Has been skipped Details CI / deploy-dev (pull_request) Has been skipped Details CI / deploy-uat (pull_request) Has been skipped Details	2026-06-22 22:24:15 +00:00