Merge pull request #875 from erikgb/rebuild-default-bundle-images #3

	name: trust-package-release-debian-bookworm
	on:
	push:
	branches: ['main']
	paths:
	- make/00_debian_bookworm_version.mk

	jobs:
	build_and_push:
	runs-on: ubuntu-latest

	permissions:
	contents: read # needed for checkout
	packages: write # needed for push images
	id-token: write # needed for keyless signing

	steps:
	- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
	# Adding `fetch-depth: 0` makes sure tags are also fetched. We need
	# the tags so `git describe` returns a valid version.
	# see https://github.com/actions/checkout/issues/701 for extra info about this option
	with: { fetch-depth: 0 }

	- id: go-version
	run: \|
	make print-go-version >> "$GITHUB_OUTPUT"

	- uses: docker/login-action@c94ce9fb468520275223c153574b00df6fe4bcc9 # v3.7.0
	with:
	registry: quay.io
	username: ${{ secrets.QUAY_USERNAME }}
	password: ${{ secrets.QUAY_PASSWORD }}

	- uses: actions/setup-go@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5 # v6.2.0
	with:
	go-version: ${{ steps.go-version.outputs.result }}

	- id: release
	run: make release-debian-bookworm-trust-package

	outputs:
	RELEASE_OCI_MANAGER_IMAGE: ${{ steps.release.outputs.RELEASE_OCI_PACKAGE_DEBIAN_BOOKWORM_IMAGE }}
	RELEASE_OCI_MANAGER_TAG: ${{ steps.release.outputs.RELEASE_OCI_PACKAGE_DEBIAN_BOOKWORM_TAG }}

Provide feedback