From 0f7b3d96adec2c094e00afbaa55140f85c265384 Mon Sep 17 00:00:00 2001
From: Simon Bihel <simon.bihel@spruceid.com>
Date: Fri, 2 Feb 2024 10:05:12 +0000
Subject: [PATCH] Update docker push actions and use runner's credentials

---
 .github/workflows/push_image.yml | 15 +++++++++------
 1 file changed, 9 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/push_image.yml b/.github/workflows/push_image.yml
index 2aba0b34..49fd1243 100644
--- a/.github/workflows/push_image.yml
+++ b/.github/workflows/push_image.yml
@@ -11,11 +11,14 @@ on:
 jobs:
   build-and-push:
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
     steps:
     - name: Checkout DIDKit repository
-      uses: actions/checkout@v3
-    - uses: docker/setup-buildx-action@v2
-    - uses: docker/metadata-action@v4
+      uses: actions/checkout@v4
+    - uses: docker/setup-buildx-action@v3
+    - uses: docker/metadata-action@v5
       id: meta
       with:
         images: |
@@ -24,12 +27,12 @@ jobs:
           type=ref,event=branch
           type=sha,prefix={{date 'YYYYMMDDHHmmss'}}
           type=raw,value=latest,enable={{is_default_branch}}
-    - uses: docker/login-action@v2
+    - uses: docker/login-action@v3
       with:
         registry: ghcr.io
         username: ${{ github.actor }}
-        password: ${{ secrets.SBIHEL_GH_PACKAGE_PUSH_TOKEN }}
-    - uses: docker/build-push-action@v4
+        password: ${{ secrets.GITHUB_TOKEN }}
+    - uses: docker/build-push-action@v5
       with:
         push: true
         tags: ${{ steps.meta.outputs.tags }}