From ff2cb0e753679bd9b67a344f6c0cad4304dd3c2d Mon Sep 17 00:00:00 2001
From: Hendrik Deuper <hendrik.deuper@greenbone.net>
Date: Thu, 29 Aug 2024 07:59:21 +0000
Subject: [PATCH] Add: secrets and environment variables for Secure Boot

---
 .github/actions/build/action.yml | 2 ++
 .github/workflows/gos-ci.yml     | 6 ++++++
 2 files changed, 8 insertions(+)

diff --git a/.github/actions/build/action.yml b/.github/actions/build/action.yml
index 9d7a7c3..7ad3894 100644
--- a/.github/actions/build/action.yml
+++ b/.github/actions/build/action.yml
@@ -38,5 +38,7 @@ runs:
           -e TOKEN="${{ env.TOKEN }}" \
           -e GITHUB_TOKEN="${{ env.GITHUB_TOKEN }}" \
           -e GITHUB_ACTOR="${{ github.actor }}" \
+          -e SECUREBOOT_DB_KEY="${{ env.SECUREBOOT_DB_KEY }}" \
+          -e SECUREBOOT_DB_CRT="${{ env.SECUREBOOT_DB_CRT }}" \
           ${{ inputs.registry }}/${{ inputs.arch }}/gbp:${{ inputs.debian_release_name }}
       shell: bash
diff --git a/.github/workflows/gos-ci.yml b/.github/workflows/gos-ci.yml
index 2f86bc5..538cc69 100644
--- a/.github/workflows/gos-ci.yml
+++ b/.github/workflows/gos-ci.yml
@@ -20,6 +20,10 @@ on:
         required: true
       TOKEN:
         required: false
+      SECUREBOOT_DB_KEY:
+        required: false
+      SECUREBOOT_DB_CRT:
+        required: false
 
 env:
   DEBFULLNAME: "GOS Pipeline"
@@ -49,6 +53,8 @@ env:
   CI_ACTIONS_REPOSITORY: greenbone/gos-ci
   CI_ACTIONS_PATH: ./.github/actions/
   TOKEN: ${{ secrets.TOKEN }}
+  SECUREBOOT_DB_KEY: ${{ secrets.SECUREBOOT_DB_KEY }}
+  SECUREBOOT_DB_CRT: ${{ secrets.SECUREBOOT_DB_CRT }}
 
 concurrency: pending_workflow_${{ github.repository }}