Build and Publish Docker Image #8

Workflow file for this run

	name: Build and Publish Docker Image

	on:
	workflow_dispatch:
	inputs:
	target:
	type: choice
	description: Which image to release
	required: true
	options:
	- riscv-unknown-elf-toolchain
	- rust-riscv32imac-cross
	- rust-riscv64imac-cross
	push:
	tags:
	# matches tags like `service/v1.0.0`
	- "/v"

	env:
	REGISTRY: ghcr.io
	REGISTRY_IMAGE: ghcr.io/commonwarexyz/monorepo
	GIT_REF_NAME: ${{ github.ref_name }}

	jobs:
	prepare:
	name: Prepare Bake
	runs-on: ubuntu-latest
	permissions:
	packages: write
	outputs:
	matrix: ${{ steps.platforms.outputs.matrix }}
	target: ${{ steps.target-spec.outputs.target }}
	steps:
	- name: Checkout
	uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
	- name: Specify Target
	id: target-spec
	run: \|
	export TARGET="${{ inputs.target }}"
	if [[ -z $TARGET ]]; then
	export TARGET="${GIT_REF_NAME%/*}"
	fi
	echo "Target: $TARGET"
	echo "target=$TARGET" >> $GITHUB_OUTPUT
	- name: Create matrix
	id: platforms
	run: \|
	echo "matrix=$(docker buildx bake -f docker/docker-bake.hcl ${{ steps.target-spec.outputs.target }} --print \| jq -cr '.target."${{ steps.target-spec.outputs.target }}".platforms')" >> ${GITHUB_OUTPUT}
	- name: Show matrix
	run: \|
	echo ${{ steps.platforms.outputs.matrix }}
	- name: Docker meta
	id: meta
	uses: docker/metadata-action@c1e51972afc2121e065aed6d45c65596fe445f3f # v5.8.0
	with:
	images: ${{ env.REGISTRY_IMAGE }}/${{ steps.target-spec.outputs.target }}
	tags: \|
	type=ref,event=branch
	type=match,pattern=v(.*),group=1,event=tag
	type=ref,event=pr
	- name: Rename meta bake definition file
	run: \|
	mv "${{ steps.meta.outputs.bake-file }}" "${{ runner.temp }}/bake-meta.json"
	- name: Upload meta bake definition
	uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
	with:
	name: bake-meta
	path: ${{ runner.temp }}/bake-meta.json
	if-no-files-found: error
	retention-days: 1

	build:
	name: Build Image (${{ needs.prepare.outputs.target }} - ${{ matrix.platform }})
	runs-on: ${{ matrix.platform == 'linux/amd64' && 'ubuntu-latest' \|\| 'ubuntu-22.04-arm' }}
	permissions:
	packages: write
	needs:
	- prepare
	strategy:
	fail-fast: false
	matrix:
	platform: ${{ fromJson(needs.prepare.outputs.matrix) }}
	steps:
	- name: Free Disk Space (Ubuntu)
	uses: jlumbroso/free-disk-space@main
	with:
	large-packages: false
	- name: Prepare
	run: \|
	platform=${{ matrix.platform }}
	echo "PLATFORM_PAIR=${platform//\//-}" >> $GITHUB_ENV
	- name: Download meta bake definition
	uses: actions/download-artifact@634f93cb2916e3fdff6788551b99b062d0335ce0 # v5.0.0
	with:
	name: bake-meta
	path: ${{ runner.temp }}
	- name: Authenticate with container registry
	uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
	with:
	registry: ${{ env.REGISTRY }}
	username: ${{ github.actor }}
	password: ${{ secrets.GITHUB_TOKEN }}
	- name: Set up Docker Buildx
	uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
	- name: Build
	id: bake
	uses: docker/bake-action@3acf805d94d93a86cce4ca44798a76464a75b88c # v6.9.0
	with:
	files: \|
	./docker/docker-bake.hcl
	cwd://${{ runner.temp }}/bake-meta.json
	targets: ${{ needs.prepare.outputs.target }}
	set: \|
	*.tags=
	*.platform=${{ matrix.platform }}
	*.output=type=image,"name=${{ env.REGISTRY_IMAGE }}/${{ needs.prepare.outputs.target }}",push-by-digest=true,name-canonical=true,push=true
	- name: Export digest
	run: \|
	mkdir -p ${{ runner.temp }}/digests
	digest="${{ fromJSON(steps.bake.outputs.metadata)[needs.prepare.outputs.target]['containerimage.digest'] }}"
	touch "${{ runner.temp }}/digests/${digest#sha256:}"
	- name: Upload digest
	uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
	with:
	name: digests-${{ env.PLATFORM_PAIR }}
	path: ${{ runner.temp }}/digests/*
	if-no-files-found: error
	retention-days: 1

	merge:
	name: Publish Manifest (${{ needs.prepare.outputs.target }})
	runs-on: ubuntu-latest
	permissions:
	packages: write
	needs:
	- build
	- prepare
	steps:
	- name: Download meta bake definition
	uses: actions/download-artifact@634f93cb2916e3fdff6788551b99b062d0335ce0 # v5.0.0
	with:
	name: bake-meta
	path: ${{ runner.temp }}
	- name: Download digests
	uses: actions/download-artifact@634f93cb2916e3fdff6788551b99b062d0335ce0 # v5.0.0
	with:
	path: ${{ runner.temp }}/digests
	pattern: digests-*
	merge-multiple: true
	- name: Authenticate with container registry
	uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef # v3.6.0
	with:
	registry: ${{ env.REGISTRY }}
	username: ${{ github.actor }}
	password: ${{ secrets.GITHUB_TOKEN }}
	- name: Set up Docker Buildx
	uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
	- name: Create manifest list and push
	working-directory: ${{ runner.temp }}/digests
	run: \|
	docker buildx imagetools create $(jq -cr '.target."docker-metadata-action".tags \| map(select(startswith("${{ env.REGISTRY_IMAGE }}/${{ needs.prepare.outputs.target }}")) \| "-t " + .) \| join(" ")' ${{ runner.temp }}/bake-meta.json) \
	$(printf '${{ env.REGISTRY_IMAGE }}/${{ needs.prepare.outputs.target }}@sha256:%s ' *)
	- name: Inspect image
	run: \|
	docker buildx imagetools inspect ${{ env.REGISTRY_IMAGE }}/${{ needs.prepare.outputs.target }}:$(jq -r '.target."docker-metadata-action".args.DOCKER_META_VERSION' ${{ runner.temp }}/bake-meta.json)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Build and Publish Docker Image #8

Workflow file

Build and Publish Docker Image #8

Uh oh!

Jobs

Run details

Workflow file for this run