d5a8444739
- pr.yaml: PR checks (hadolint + build-test) on PRs to main - main.yaml: lint → test → build → auto-tag on push to main - tag.yaml: lint → test → build-push with tag-based Docker metadata - cron.yaml: nightly rebuild (0 0 * * *) with latest semver tag Adapted from perso/htpasswd template with: - Image: jcabillot/docker-duplicacy - Git URL: scm.cabillot.eu/perso/docker-duplicacy.git - RELEASE_BRANCHES: main - Cron schedule: '0 0 * * *' (from original cron.yaml) - Secret: GITHUB_TOKEN (existing)
50 lines
1.6 KiB
YAML
50 lines
1.6 KiB
YAML
name: Main Release
|
|
|
|
on:
|
|
push:
|
|
branches: [main]
|
|
|
|
jobs:
|
|
hadolint:
|
|
runs-on: ubuntu-latest
|
|
continue-on-error: true
|
|
steps:
|
|
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
|
|
- uses: hadolint/hadolint-action@2332a7b74a6de0da2e2221d575162eba76ba5e5 # v3.3.0
|
|
with:
|
|
dockerfile: Dockerfile
|
|
|
|
test:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
|
|
- uses: docker/setup-buildx-action@d7f5e7f509e45cec5cecb5e8c5e9d93d0b3df5 # v4
|
|
- run: docker build -t ci-image:${{ github.sha }} .
|
|
- run: bash tests/test.sh ci-image:${{ github.sha }}
|
|
|
|
build:
|
|
needs: [test]
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
|
|
- uses: docker/setup-buildx-action@d7f5e7f509e45cec5cecb5e8c5e9d93d0b3df5 # v4
|
|
- run: docker build -t jcabillot/docker-duplicacy:${{ github.sha }} .
|
|
|
|
tag:
|
|
needs: [build]
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
|
|
with:
|
|
fetch-depth: 0
|
|
- name: Configure git auth
|
|
run: |
|
|
git remote set-url origin "https://x-access-token:${{ secrets.GITHUB_TOKEN }}@scm.cabillot.eu/perso/docker-duplicacy.git"
|
|
- uses: anothrNick/github-tag-action@4ed44965e0dbd8dab46a4b6db2e4c3cc312fd8 # v1.75.0
|
|
env:
|
|
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
|
DEFAULT_BUMP: patch
|
|
RELEASE_BRANCHES: main
|
|
WITH_V: true
|
|
GIT_API_TAGGING: false
|