From ddf4911e35a921dfd699f09b24a0d69762d2ed48 Mon Sep 17 00:00:00 2001 From: Pavel Abramov Date: Tue, 8 Oct 2024 11:36:23 +0200 Subject: [PATCH] Add Release CI workflow It includes publishing container to DockerHub Signed-off-by: Pavel Abramov --- .github/workflows/release_ci.yml | 42 ++++++++++++++++++++++++++++++++ 1 file changed, 42 insertions(+) create mode 100644 .github/workflows/release_ci.yml diff --git a/.github/workflows/release_ci.yml b/.github/workflows/release_ci.yml new file mode 100644 index 0000000..d8e3408 --- /dev/null +++ b/.github/workflows/release_ci.yml @@ -0,0 +1,42 @@ +name: Release CI + +on: + release: + types: [published] + +jobs: + push_to_registry: + name: Push Docker image to Docker Hub + runs-on: ubuntu-latest + permissions: + packages: write + contents: read + attestations: write + id-token: write + steps: + - name: Check out the repo + uses: actions/checkout@v4 + + - name: Log in to Docker Hub + uses: docker/login-action@f4ef78c080cd8ba55a85445d5b36e214a81df20a + with: + username: ${{ secrets.DOCKER_USR }} + password: ${{ secrets.DOCKER_PAT }} + + - name: Build and push server Docker image + id: push + uses: docker/build-push-action@3b5e8027fcad23fda98b2e3ac259d8d67585f671 + with: + context: . + file: ./src/server/Dockerfile + push: true + tags: | + ${{ secrets.DOCKER_USR }}/nkv:${{ github.event.release.tag_name }} + ${{ secrets.DOCKER_USR }}/nkv:latest + + - name: Generate server artifact attestation + uses: actions/attest-build-provenance@v1 + with: + subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME}} + subject-digest: ${{ steps.push.outputs.digest }} + push-to-registry: true