name: build concurrency: group: ${{ github.workflow }}-${{ github.ref }} cancel-in-progress: true on: push: branches: - 'master' tags: - 'v*' pull_request: env: DOCKERHUB_SLUG: crazymax/diun GHCR_SLUG: ghcr.io/crazy-max/diun DESTDIR: ./bin jobs: prepare: runs-on: ubuntu-latest outputs: validate-targets: ${{ steps.validate-targets.outputs.matrix }} artifact-platforms: ${{ steps.artifact-platforms.outputs.matrix }} steps: - name: Checkout uses: actions/checkout@v3 - name: Validate targets matrix id: validate-targets run: | echo "matrix=$(docker buildx bake validate --print | jq -cr '.group.validate.targets')" >> $GITHUB_OUTPUT - name: Artifact platforms matrix id: artifact-platforms run: | echo "matrix=$(docker buildx bake artifact-all --print | jq -cr '.target."artifact-all".platforms')" >> $GITHUB_OUTPUT validate: runs-on: ubuntu-latest needs: - prepare strategy: fail-fast: false matrix: target: ${{ fromJson(needs.prepare.outputs.validate-targets) }} steps: - name: Checkout uses: actions/checkout@v3 - name: Set up Docker Buildx uses: docker/setup-buildx-action@v2 - name: Validate uses: docker/bake-action@v3 with: targets: ${{ matrix.target }} test: runs-on: ubuntu-latest steps: - name: Checkout uses: actions/checkout@v3 with: fetch-depth: 0 - name: Set up Docker Buildx uses: docker/setup-buildx-action@v2 - name: Test uses: docker/bake-action@v3 with: targets: test pull: true - name: Upload coverage uses: codecov/codecov-action@v3 with: directory: ${{ env.DESTDIR }}/coverage artifact: runs-on: ubuntu-latest needs: - prepare - validate strategy: fail-fast: false matrix: platform: ${{ fromJson(needs.prepare.outputs.artifact-platforms) }} steps: - name: Prepare run: | platform=${{ matrix.platform }} echo "PLATFORM_PAIR=${platform//\//-}" >> $GITHUB_ENV - name: Checkout uses: actions/checkout@v3 with: fetch-depth: 0 - name: Set up QEMU uses: docker/setup-qemu-action@v2 - name: Set up Docker Buildx uses: docker/setup-buildx-action@v2 - name: Build uses: docker/bake-action@v3 with: targets: artifact pull: true set: | *.platform=${{ matrix.platform }} *.cache-from=type=gha,scope=artifact-${{ env.PLATFORM_PAIR }} *.cache-to=type=gha,scope=artifact-${{ env.PLATFORM_PAIR }},mode=max - name: Upload artifact uses: actions/upload-artifact@v3 with: name: diun path: ${{ env.DESTDIR }} if-no-files-found: error release: runs-on: ubuntu-latest needs: - artifact - test steps: - name: Checkout uses: actions/checkout@v3 - name: Download artifacts uses: actions/download-artifact@v3 with: name: diun path: ${{ env.DESTDIR }} - name: Set up Docker Buildx uses: docker/setup-buildx-action@v2 - name: Build uses: docker/bake-action@v3 with: targets: release - name: GitHub Release uses: softprops/action-gh-release@v1 if: startsWith(github.ref, 'refs/tags/') with: draft: true files: | ${{ env.DESTDIR }}/release/* env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} image: runs-on: ubuntu-latest needs: - artifact - test steps: - name: Checkout uses: actions/checkout@v3 with: fetch-depth: 0 - name: Prepare run: | cfroms= while read -r platform; do if [ -n "$cfroms" ]; then cfroms="${cfroms}\n"; fi cfroms="${cfroms}*.cache-from=type=gha,scope=artifact-${platform//\//-}" done < <(docker buildx bake artifact-all --print | jq -r '.target."artifact-all".platforms[]') echo "CACHE_FROMS<> $GITHUB_ENV echo -e "$cfroms" >> $GITHUB_ENV echo "EOF" >> $GITHUB_ENV - name: Docker meta id: meta uses: docker/metadata-action@v4 with: images: | ${{ env.DOCKERHUB_SLUG }} ${{ env.GHCR_SLUG }} tags: | type=semver,pattern={{version}} type=semver,pattern={{major}}.{{minor}} type=semver,pattern={{major}} type=ref,event=pr type=edge labels: | org.opencontainers.image.title=Diun org.opencontainers.image.description=Docker image update notifier org.opencontainers.image.vendor=CrazyMax - name: Set up QEMU uses: docker/setup-qemu-action@v2 - name: Set up Docker Buildx uses: docker/setup-buildx-action@v2 - name: Login to DockerHub if: github.event_name != 'pull_request' uses: docker/login-action@v2 with: username: ${{ secrets.DOCKER_USERNAME }} password: ${{ secrets.DOCKER_PASSWORD }} - name: Login to GHCR if: github.event_name != 'pull_request' uses: docker/login-action@v2 with: registry: ghcr.io username: ${{ github.repository_owner }} password: ${{ secrets.GITHUB_TOKEN }} - name: Build uses: docker/bake-action@v3 with: files: | ./docker-bake.hcl ${{ steps.meta.outputs.bake-file }} targets: image-all pull: true push: ${{ github.event_name != 'pull_request' }} set: | ${{ env.CACHE_FROMS }} - name: Check manifest if: github.event_name != 'pull_request' run: | docker buildx imagetools inspect ${{ env.DOCKERHUB_SLUG }}:${{ steps.meta.outputs.version }} docker buildx imagetools inspect ${{ env.GHCR_SLUG }}:${{ steps.meta.outputs.version }} - name: Inspect image if: github.event_name != 'pull_request' run: | docker pull ${{ env.DOCKERHUB_SLUG }}:${{ steps.meta.outputs.version }} docker image inspect ${{ env.DOCKERHUB_SLUG }}:${{ steps.meta.outputs.version }} docker pull ${{ env.GHCR_SLUG }}:${{ steps.meta.outputs.version }} docker image inspect ${{ env.GHCR_SLUG }}:${{ steps.meta.outputs.version }}