push the image to GHCR on merge to main, slice 3 of M4
Tags :latest and the commit SHA, authenticated with the built-in GITHUB_TOKEN via the packages:write permission. Making the package public is a one-time manual step in the package settings after the first push.
This commit is contained in:
parent
33df4d33eb
commit
51af5acf6a
1 changed files with 33 additions and 0 deletions
33
.github/workflows/image.yml
vendored
Normal file
33
.github/workflows/image.yml
vendored
Normal file
|
|
@ -0,0 +1,33 @@
|
||||||
|
# Builds the Dockerfile and pushes the result to GHCR on every merge to
|
||||||
|
# main, tagged :latest (what the server pulls) and :<sha> (rollback to
|
||||||
|
# any exact commit without a release process). The GITHUB_TOKEN is
|
||||||
|
# enough to push packages; no extra secret needed, only the
|
||||||
|
# packages: write permission below.
|
||||||
|
name: Image
|
||||||
|
|
||||||
|
on:
|
||||||
|
push:
|
||||||
|
branches: [main]
|
||||||
|
|
||||||
|
jobs:
|
||||||
|
image:
|
||||||
|
name: Build and push to ghcr.io
|
||||||
|
runs-on: ubuntu-latest
|
||||||
|
permissions:
|
||||||
|
contents: read
|
||||||
|
packages: write
|
||||||
|
steps:
|
||||||
|
- uses: actions/checkout@v4
|
||||||
|
- uses: docker/setup-buildx-action@v3
|
||||||
|
- uses: docker/login-action@v3
|
||||||
|
with:
|
||||||
|
registry: ghcr.io
|
||||||
|
username: ${{ github.actor }}
|
||||||
|
password: ${{ secrets.GITHUB_TOKEN }}
|
||||||
|
- uses: docker/build-push-action@v6
|
||||||
|
with:
|
||||||
|
context: .
|
||||||
|
push: true
|
||||||
|
tags: |
|
||||||
|
ghcr.io/justinzeus/spreadlab:latest
|
||||||
|
ghcr.io/justinzeus/spreadlab:${{ github.sha }}
|
||||||
Loading…
Add table
Add a link
Reference in a new issue