Bump docker/build-push-action from 5.3.0 to 5.4.0 (#89) #36
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
--- | |
name: Deploy | |
on: | |
workflow_dispatch: | |
inputs: | |
reason: | |
required: true | |
description: "Reason for running this workflow" | |
push: | |
branches: | |
- main | |
# Don't trigger if it's just a documentation update | |
paths-ignore: | |
- "**.md" | |
- "**.MD" | |
- "**.yml" | |
- "LICENSE" | |
- ".gitattributes" | |
- ".gitignore" | |
- ".dockerignore" | |
# Set workflow-wide environment variables | |
# - REPO: repo name on dockerhub | |
# - IMAGE: image name on dockerhub | |
env: | |
GHCR_IMAGE: ${{ github.repository }} | |
GHCR_REGISTRY: ghcr.io | |
jobs: | |
workflow-dispatch: | |
name: Triggered via Workflow Dispatch? | |
# only run this step if workflow dispatch triggered | |
# log the reason the workflow dispatch was triggered | |
if: | | |
github.event_name == 'workflow_dispatch' && | |
github.event.inputs.reason != '' | |
runs-on: ubuntu-latest | |
steps: | |
- name: Log dispatch reason | |
env: | |
INPUTS_REASON: ${{ github.event.inputs.reason }} | |
run: | | |
echo "Workflow dispatch reason: $INPUTS_REASON" | |
hadolint: | |
name: Run hadolint against docker files | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4.1.6 | |
- name: Pull hadolint/hadolint:latest Image | |
run: docker pull hadolint/hadolint:latest | |
- name: Run hadolint against Dockerfiles | |
run: docker run --rm -i -v "$PWD":/workdir --workdir /workdir --entrypoint hadolint hadolint/hadolint --ignore DL3003 --ignore DL3006 --ignore DL3010 --ignore DL4001 --ignore DL3007 --ignore DL3008 --ignore SC2068 --ignore DL3007 --ignore SC1091 --ignore DL3013 --ignore DL3010 $(find . -type f -iname "Dockerfile*") | |
deploy_ghcr_multiarch: | |
name: Deploy ghcr.io (Multi-Arch) | |
needs: [hadolint] | |
runs-on: ubuntu-latest | |
steps: | |
# Check out our code | |
- name: Checkout | |
uses: actions/checkout@v4.1.6 | |
with: | |
fetch-depth: 0 | |
# Log into ghcr (so we can push images) | |
- name: Login to ghcr.io | |
uses: docker/login-action@v3.2.0 | |
with: | |
registry: ${{ env.GHCR_REGISTRY }} | |
username: ${{ github.repository_owner }} | |
password: ${{ secrets.GITHUB_TOKEN }} | |
# Get metadata from repo | |
- name: Extract metadata (tags, labels) for Docker | |
id: meta | |
uses: docker/metadata-action@v5.5.1 | |
with: | |
images: ${{ env.GHCR_REGISTRY }}/${{ env.IMAGE_NAME }} | |
# Set up QEMU for multi-arch builds | |
- name: Set up QEMU | |
uses: docker/setup-qemu-action@v3.0.0 | |
# Set up buildx for multi platform builds | |
- name: Set up Docker Buildx | |
id: buildx | |
uses: docker/setup-buildx-action@v3.3.0 | |
# Build "latest" | |
- name: Build & Push - latest | |
uses: docker/build-push-action@v5.4.0 | |
with: | |
context: . | |
file: ./Dockerfile | |
no-cache: true | |
platforms: linux/amd64,linux/arm/v7,linux/arm64 | |
push: true | |
tags: ghcr.io/${{ env.GHCR_IMAGE }}:latest | |
labels: ${{ steps.meta.outputs.labels }} | |
# Get version from "latest" | |
- name: Get latest image version | |
run: | | |
docker pull "ghcr.io/${{ env.GHCR_IMAGE }}:latest" | |
echo "VERSION_TAG=$(docker run --rm --entrypoint cat "ghcr.io/${{ env.GHCR_IMAGE }}:latest" /CONTAINER_VERSION)" >> $GITHUB_ENV | |
# Show version from "latest" | |
- name: Show latest image version | |
run: | | |
echo "ghcr.io/${{ env.GHCR_IMAGE }}:latest contains version: ${{ env.VERSION_TAG }}" | |
# Build version specific | |
- name: Build & Push - version specific | |
uses: docker/build-push-action@v5.4.0 | |
with: | |
context: . | |
file: ./Dockerfile | |
no-cache: false | |
platforms: linux/amd64,linux/arm/v7,linux/arm64 | |
push: true | |
tags: ghcr.io/${{ env.GHCR_IMAGE }}:${{ env.VERSION_TAG }} | |
labels: ${{ steps.meta.outputs.labels }} | |
# # Patch dockerfile to remove healthcheck | |
# - name: Patch Dockerfile to remove healthcheck | |
# run: sed '/^HEALTHCHECK /d' < Dockerfile > Dockerfile.nohealthcheck | |
# # Build "latest_nohealthcheck" | |
# - name: Build & Push - latest nohealthcheck | |
# uses: docker/build-push-action@v5.4.0 | |
# with: | |
# context: . | |
# file: ./Dockerfile.nohealthcheck | |
# no-cache: false | |
# platforms: linux/amd64,linux/arm/v7,linux/arm64 | |
# push: true | |
# tags: ghcr.io/${{ env.GHCR_IMAGE }}:latest_nohealthcheck | |
# labels: ${{ steps.meta.outputs.labels }} | |
# # Build version specific _nohealthcheck | |
# - name: Build & Push - version specific nohealthcheck | |
# uses: docker/build-push-action@v5.4.0 | |
# with: | |
# context: . | |
# file: ./Dockerfile.nohealthcheck | |
# no-cache: false | |
# platforms: linux/amd64,linux/arm/v7,linux/arm64 | |
# push: true | |
# tags: ghcr.io/${{ env.GHCR_IMAGE }}:${{ env.VERSION_TAG }}_nohealthcheck | |
# labels: ${{ steps.meta.outputs.labels }} | |
deploy_ghrc_single_arch: | |
name: Deploy ghcr.io | |
needs: [hadolint] | |
runs-on: ubuntu-latest | |
strategy: | |
matrix: | |
docker-platform: | |
- linux/amd64 | |
- linux/arm64 | |
- linux/arm/v7 | |
steps: | |
# Check out our code | |
- name: Checkout | |
uses: actions/checkout@v4.1.6 | |
with: | |
fetch-depth: 0 | |
# Log into ghcr (so we can push images) | |
- name: Login to ghcr.io | |
uses: docker/login-action@v3.2.0 | |
with: | |
registry: ${{ env.GHCR_REGISTRY }} | |
username: ${{ github.repository_owner }} | |
password: ${{ secrets.GITHUB_TOKEN }} | |
# Get metadata from repo | |
- name: Extract metadata (tags, labels) for Docker | |
id: meta | |
uses: docker/metadata-action@v5.5.1 | |
with: | |
images: ${{ env.GHCR_REGISTRY }}/${{ env.IMAGE_NAME }} | |
# Set up QEMU for multi-arch builds | |
- name: Set up QEMU | |
uses: docker/setup-qemu-action@v3.0.0 | |
# Set up buildx for multi platform builds | |
- name: Set up Docker Buildx | |
id: buildx | |
uses: docker/setup-buildx-action@v3.3.0 | |
# Get archictecture suffix | |
- name: Get image architecture suffix | |
run: | | |
echo "ARCH_TAG=$(echo '${{ matrix.docker-platform }}' | cut -d '/' -f2- | tr -s '/' '_')" >> $GITHUB_ENV | |
# Show archictecture suffix | |
- name: Show image architecture suffix | |
run: | | |
echo "Architecture suffix: ${{ env.ARCH_TAG }}" | |
# Build "latest" | |
- name: Build & Push - latest | |
uses: docker/build-push-action@v5.4.0 | |
with: | |
context: . | |
file: ./Dockerfile | |
no-cache: true | |
platforms: ${{ matrix.docker-platform }} | |
push: true | |
tags: ghcr.io/${{ env.GHCR_IMAGE }}:latest_${{ env.ARCH_TAG }} | |
labels: ${{ steps.meta.outputs.labels }} | |
# Get version from "latest" | |
- name: Get latest image version | |
run: | | |
docker pull "ghcr.io/${{ env.GHCR_IMAGE }}:latest_${{ env.ARCH_TAG }}" | |
echo "VERSION_TAG=$(docker run --rm --entrypoint cat "ghcr.io/${{ env.GHCR_IMAGE }}:latest_${{ env.ARCH_TAG }}" /CONTAINER_VERSION)" >> $GITHUB_ENV | |
# Show version from "latest" | |
- name: Show latest image version | |
run: | | |
echo "ghcr.io/${{ env.GHCR_IMAGE }}:latest contains version: ${{ env.VERSION_TAG }}" | |
# Build version specific | |
- name: Build & Push - version specific | |
uses: docker/build-push-action@v5.4.0 | |
with: | |
context: . | |
file: ./Dockerfile | |
no-cache: false | |
platforms: ${{ matrix.docker-platform }} | |
push: true | |
tags: ghcr.io/${{ env.GHCR_IMAGE }}:${{ env.VERSION_TAG }}_${{ env.ARCH_TAG }} | |
labels: ${{ steps.meta.outputs.labels }} | |
# # Patch dockerfile to remove healthcheck | |
# - name: Patch Dockerfile to remove healthcheck | |
# run: sed '/^HEALTHCHECK /d' < Dockerfile > Dockerfile.nohealthcheck | |
# # Build "latest_nohealthcheck" | |
# - name: Build & Push - latest nohealthcheck | |
# uses: docker/build-push-action@v5.4.0 | |
# with: | |
# context: . | |
# file: ./Dockerfile.nohealthcheck | |
# no-cache: false | |
# platforms: ${{ matrix.docker-platform }} | |
# push: true | |
# tags: ghcr.io/${{ env.GHCR_IMAGE }}:latest_nohealthcheck_${{ env.ARCH_TAG }} | |
# labels: ${{ steps.meta.outputs.labels }} | |
# # Build version specific _nohealthcheck | |
# - name: Build & Push - version specific nohealthcheck | |
# uses: docker/build-push-action@v5.4.0 | |
# with: | |
# context: . | |
# file: ./Dockerfile.nohealthcheck | |
# no-cache: false | |
# platforms: ${{ matrix.docker-platform }} | |
# push: true | |
# tags: ghcr.io/${{ env.GHCR_IMAGE }}:${{ env.VERSION_TAG }}_nohealthcheck_${{ env.ARCH_TAG }} | |
# labels: ${{ steps.meta.outputs.labels }} |