Skip to content

chore: scale down RAM requirements for builds to 32Gb from 64Gb #9288

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
evereq merged 1 commit into from
Dec 21, 2025
Merged

chore: scale down RAM requirements for builds to 32Gb from 64Gb #9288

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .deploy/api/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -274,7 +274,7 @@ ARG NODE_ENV
ARG DEMO
ARG NODE_OPTIONS

ENV NODE_OPTIONS=${NODE_OPTIONS:-"--max-old-space-size=60000"}
ENV NODE_OPTIONS=${NODE_OPTIONS:-"--max-old-space-size=30000"}
ENV NODE_ENV=${NODE_ENV}
ENV DEMO=${DEMO:-false}

Expand Down
2 changes: 1 addition & 1 deletion .deploy/mcp-auth/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -93,7 +93,7 @@ ARG NODE_OPTIONS
ENV NX_NO_CLOUD=true
ENV CI=true

ENV NODE_OPTIONS=${NODE_OPTIONS:-"--max-old-space-size=60000"}
ENV NODE_OPTIONS=${NODE_OPTIONS:-"--max-old-space-size=30000"}
ENV NODE_ENV=production
ENV IS_DOCKER=true

Expand Down
2 changes: 1 addition & 1 deletion .deploy/mcp/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -137,7 +137,7 @@ ARG NODE_OPTIONS
ENV NX_NO_CLOUD=true
ENV CI=true

ENV NODE_OPTIONS=${NODE_OPTIONS:-"--max-old-space-size=60000"}
ENV NODE_OPTIONS=${NODE_OPTIONS:-"--max-old-space-size=30000"}
ENV NODE_ENV=production
ENV IS_DOCKER=true

Expand Down
2 changes: 1 addition & 1 deletion .deploy/webapp/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -176,7 +176,7 @@ ARG NODE_ENV
ARG DEMO
ARG NODE_OPTIONS

ENV NODE_OPTIONS=${NODE_OPTIONS:-"--max-old-space-size=60000"}
ENV NODE_OPTIONS=${NODE_OPTIONS:-"--max-old-space-size=30000"}
ENV NODE_ENV=${NODE_ENV:-production}
ENV DEMO=${DEMO:-false}

Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/agent-prod.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@

strategy:
matrix:
os: [ubicloud-standard-16]
os: [ubicloud-standard-8]

steps:
- name: Check out Git repository
Expand All @@ -36,7 +36,7 @@
run: 'sudo apt-get update && sudo apt install -y curl gnupg git libappindicator3-1 ca-certificates binutils icnsutils graphicsmagick'

- name: Install Snapcraft
uses: samuelmeuli/action-snapcraft@v2

Check warning on line 39 in .github/workflows/agent-prod.yml

View workflow job for this annotation

GitHub Actions / Cspell 

Unknown word (samuelmeuli)

- name: Fix node-gyp and Python
run: python3 -m pip install packaging setuptools
Expand Down Expand Up @@ -90,7 +90,7 @@

strategy:
matrix:
os: [ubicloud-standard-16-arm]
os: [ubicloud-standard-8-arm]

steps:
- name: Check out Git repository
Expand All @@ -108,11 +108,11 @@
- name: Install system dependencies
run: |
sudo apt-get update
sudo apt install -y curl gnupg git libappindicator3-1 ca-certificates binutils icnsutils graphicsmagick libx11-dev libxtst-dev libxt-dev libxinerama-dev libx11-xcb-dev libxkbcommon-dev libxkbcommon-x11-dev libxkbfile-dev libxrandr-dev ruby ruby-dev rubygems build-essential

Check warning on line 111 in .github/workflows/agent-prod.yml

View workflow job for this annotation

GitHub Actions / Cspell 

Unknown word (rubygems)

Check warning on line 111 in .github/workflows/agent-prod.yml

View workflow job for this annotation

GitHub Actions / Cspell 

Unknown word (libxrandr)

Check warning on line 111 in .github/workflows/agent-prod.yml

View workflow job for this annotation

GitHub Actions / Cspell 

Unknown word (libxkbfile)

Check warning on line 111 in .github/workflows/agent-prod.yml

View workflow job for this annotation

GitHub Actions / Cspell 

Unknown word (libxkbcommon)

Check warning on line 111 in .github/workflows/agent-prod.yml

View workflow job for this annotation

GitHub Actions / Cspell 

Unknown word (libxkbcommon)

Check warning on line 111 in .github/workflows/agent-prod.yml

View workflow job for this annotation

GitHub Actions / Cspell 

Unknown word (libxinerama)

Check warning on line 111 in .github/workflows/agent-prod.yml

View workflow job for this annotation

GitHub Actions / Cspell 

Unknown word (libxt)

Check warning on line 111 in .github/workflows/agent-prod.yml

View workflow job for this annotation

GitHub Actions / Cspell 

Unknown word (libxtst)
sudo gem install --no-document fpm

- name: Install Snapcraft
uses: samuelmeuli/action-snapcraft@v2

Check warning on line 115 in .github/workflows/agent-prod.yml

View workflow job for this annotation

GitHub Actions / Cspell 

Unknown word (samuelmeuli)

- name: Install Multipass
run: 'sudo snap install multipass'
Expand Down Expand Up @@ -171,7 +171,7 @@

strategy:
matrix:
os: [warp-macos-15-arm64-12x]
os: [warp-macos-15-arm64-6x]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -237,7 +237,7 @@

strategy:
matrix:
os: [warp-windows-latest-x64-16x]
os: [warp-windows-latest-x64-8x]

steps:
- name: Check out Git repository
Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/agent-stage.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ jobs:

strategy:
matrix:
os: [ubicloud-standard-16]
os: [ubicloud-standard-8]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -90,7 +90,7 @@ jobs:

strategy:
matrix:
os: [ubicloud-standard-16-arm]
os: [ubicloud-standard-8-arm]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -171,7 +171,7 @@ jobs:

strategy:
matrix:
os: [warp-macos-15-arm64-12x]
os: [warp-macos-15-arm64-6x]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -237,7 +237,7 @@ jobs:

strategy:
matrix:
os: [warp-windows-latest-x64-16x]
os: [warp-windows-latest-x64-8x]

steps:
- name: Check out Git repository
Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/desktop-app-prod.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ jobs:

strategy:
matrix:
os: [ubicloud-standard-16]
os: [ubicloud-standard-8]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -90,7 +90,7 @@ jobs:

strategy:
matrix:
os: [ubicloud-standard-16-arm]
os: [ubicloud-standard-8-arm]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -171,7 +171,7 @@ jobs:

strategy:
matrix:
os: [warp-macos-15-arm64-12x]
os: [warp-macos-15-arm64-6x]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -237,7 +237,7 @@ jobs:

strategy:
matrix:
os: [warp-windows-latest-x64-16x]
os: [warp-windows-latest-x64-8x]

steps:
- name: Check out Git repository
Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/desktop-app-stage.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ jobs:

strategy:
matrix:
os: [ubicloud-standard-16]
os: [ubicloud-standard-8]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -90,7 +90,7 @@ jobs:

strategy:
matrix:
os: [ubicloud-standard-16-arm]
os: [ubicloud-standard-8-arm]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -171,7 +171,7 @@ jobs:

strategy:
matrix:
os: [warp-macos-15-arm64-12x]
os: [warp-macos-15-arm64-6x]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -237,7 +237,7 @@ jobs:

strategy:
matrix:
os: [warp-windows-latest-x64-16x]
os: [warp-windows-latest-x64-8x]

steps:
- name: Check out Git repository
Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/desktop-timer-app-prod.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ jobs:

strategy:
matrix:
os: [ubicloud-standard-16]
os: [ubicloud-standard-8]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -90,7 +90,7 @@ jobs:

strategy:
matrix:
os: [ubicloud-standard-16-arm]
os: [ubicloud-standard-8-arm]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -171,7 +171,7 @@ jobs:

strategy:
matrix:
os: [warp-macos-15-arm64-12x]
os: [warp-macos-15-arm64-6x]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -237,7 +237,7 @@ jobs:

strategy:
matrix:
os: [warp-windows-latest-x64-16x]
os: [warp-windows-latest-x64-8x]

steps:
- name: Check out Git repository
Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/desktop-timer-app-stage.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ jobs:

strategy:
matrix:
os: [ubicloud-standard-16]
os: [ubicloud-standard-8]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -90,7 +90,7 @@ jobs:

strategy:
matrix:
os: [ubicloud-standard-16-arm]
os: [ubicloud-standard-8-arm]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -171,7 +171,7 @@ jobs:

strategy:
matrix:
os: [warp-macos-15-arm64-12x]
os: [warp-macos-15-arm64-6x]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -237,7 +237,7 @@ jobs:

strategy:
matrix:
os: [warp-windows-latest-x64-16x]
os: [warp-windows-latest-x64-8x]

steps:
- name: Check out Git repository
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/docker-build-publish-demo.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,157 +10,157 @@

jobs:
gauzy-api:
runs-on: ubicloud-standard-16
runs-on: ubicloud-standard-8
steps:
- name: Checkout
uses: actions/checkout@v4

- name: Set up QEMU
uses: docker/setup-qemu-action@v3

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
with:
driver: docker

- name: Build
uses: docker/build-push-action@v5
with:
context: .
file: ./.deploy/api/Dockerfile
load: true
platforms: linux/amd64
tags: |
ghcr.io/ever-co/gauzy-api-demo:latest
everco/gauzy-api-demo:latest
registry.digitalocean.com/ever/gauzy-api-demo:latest
${{ secrets.CW_DOCKER_REGISTRY }}/ever-co/gauzy-api-demo:latest
cache-from: type=registry,ref=ghcr.io/ever-co/gauzy-api-demo:latest
cache-to: type=inline
build-args: |
NODE_ENV=development

- name: Docker images list
run: |
sudo docker image list

- name: Login to DockerHub
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}

- name: Push to Docker Hub Registry
run: |
docker push everco/gauzy-api-demo:latest

- name: Install doctl
uses: digitalocean/action-doctl@v2
with:
token: ${{ secrets.DIGITALOCEAN_ACCESS_TOKEN }}

- name: Log in to DigitalOcean Container Registry with short-lived credentials
run: doctl registry login --expiry-seconds 3600

- name: Push to DigitalOcean Registry
run: |
docker push registry.digitalocean.com/ever/gauzy-api-demo:latest

- name: Login to GitHub Container Registry
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Push to Github Registry
run: |
docker push ghcr.io/ever-co/gauzy-api-demo:latest

- name: Login to CW Container Registry
uses: docker/login-action@v3
with:
registry: ${{ secrets.CW_DOCKER_REGISTRY }}
username: ${{ secrets.CW_DOCKER_USER }}
password: ${{ secrets.CW_DOCKER_USER_PASSWORD }}

# - name: Push to CW Registry
# run: |
# docker push ${{ secrets.CW_DOCKER_REGISTRY }}/ever-co/gauzy-api-demo:latest

gauzy-webapp:

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}
runs-on: ubicloud-standard-16
runs-on: ubicloud-standard-8
steps:
- name: Checkout
uses: actions/checkout@v4

- name: Set up QEMU
uses: docker/setup-qemu-action@v3

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3

- name: Build
uses: docker/build-push-action@v5
with:
context: .
file: ./.deploy/webapp/Dockerfile
load: true
platforms: linux/amd64
tags: |
ghcr.io/ever-co/gauzy-webapp-demo:latest
everco/gauzy-webapp-demo:latest
registry.digitalocean.com/ever/gauzy-webapp-demo:latest
${{ secrets.CW_DOCKER_REGISTRY }}/ever-co/gauzy-webapp-demo:latest
cache-from: type=registry,ref=ghcr.io/ever-co/gauzy-webapp-demo:latest
cache-to: type=inline
build-args: |
NODE_ENV=development

- name: Docker images list
run: |
sudo docker image list

- name: Login to DockerHub
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}

- name: Push to Docker Hub Registry
run: |
docker push everco/gauzy-webapp-demo:latest

- name: Install doctl
uses: digitalocean/action-doctl@v2
with:
token: ${{ secrets.DIGITALOCEAN_ACCESS_TOKEN }}

- name: Log in to DigitalOcean Container Registry with short-lived credentials
run: doctl registry login --expiry-seconds 3600

- name: Push to DigitalOcean Registry
run: |
docker push registry.digitalocean.com/ever/gauzy-webapp-demo:latest

- name: Login to GitHub Container Registry
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Push to Github Registry
run: |
docker push ghcr.io/ever-co/gauzy-webapp-demo:latest

- name: Login to CW Container Registry
uses: docker/login-action@v3
with:
registry: ${{ secrets.CW_DOCKER_REGISTRY }}
username: ${{ secrets.CW_DOCKER_USER }}
password: ${{ secrets.CW_DOCKER_USER_PASSWORD }}

# - name: Push to CW Registry
# run: |
# docker push ${{ secrets.CW_DOCKER_REGISTRY }}/ever-co/gauzy-webapp-demo:latest

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}
2 changes: 1 addition & 1 deletion .github/workflows/docker-build-publish-mcp-auth-demo.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ concurrency:

jobs:
gauzy-mcp-auth:
runs-on: ubicloud-standard-16
runs-on: ubicloud-standard-8
steps:
- name: Checkout
uses: actions/checkout@v4
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/docker-build-publish-mcp-auth-prod.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ concurrency:

jobs:
gauzy-mcp-auth:
runs-on: ubicloud-standard-16
runs-on: ubicloud-standard-8
steps:
- name: Checkout
uses: actions/checkout@v4
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/docker-build-publish-mcp-auth-stage.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ concurrency:

jobs:
gauzy-mcp-auth:
runs-on: ubicloud-standard-16
runs-on: ubicloud-standard-8
steps:
- name: Checkout
uses: actions/checkout@v4
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/docker-build-publish-mcp-demo.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ concurrency:

jobs:
gauzy-mcp:
runs-on: ubicloud-standard-16
runs-on: ubicloud-standard-8
steps:
- name: Checkout
uses: actions/checkout@v4
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/docker-build-publish-mcp-prod.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ concurrency:

jobs:
gauzy-mcp:
runs-on: ubicloud-standard-16
runs-on: ubicloud-standard-8
steps:
- name: Checkout
uses: actions/checkout@v4
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/docker-build-publish-mcp-stage.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ concurrency:

jobs:
gauzy-mcp:
runs-on: ubicloud-standard-16
runs-on: ubicloud-standard-8
steps:
- name: Checkout
uses: actions/checkout@v4
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/docker-build-publish-prod.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,157 +10,157 @@

jobs:
gauzy-api:
runs-on: ubicloud-standard-16
runs-on: ubicloud-standard-8
steps:
- name: Checkout
uses: actions/checkout@v4

- name: Set up QEMU
uses: docker/setup-qemu-action@v3

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
with:
driver: docker

- name: Build
uses: docker/build-push-action@v5
with:
context: .
file: ./.deploy/api/Dockerfile
load: true
platforms: linux/amd64
tags: |
ghcr.io/ever-co/gauzy-api:latest
everco/gauzy-api:latest
registry.digitalocean.com/ever/gauzy-api:latest
${{ secrets.CW_DOCKER_REGISTRY }}/ever-co/gauzy-api:latest
cache-from: type=registry,ref=ghcr.io/ever-co/gauzy-api:latest
cache-to: type=inline
build-args: |
NODE_ENV=production

- name: Docker images list
run: |
sudo docker image list

- name: Login to DockerHub
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}

- name: Push to Docker Hub Registry
run: |
docker push everco/gauzy-api:latest

- name: Install doctl
uses: digitalocean/action-doctl@v2
with:
token: ${{ secrets.DIGITALOCEAN_ACCESS_TOKEN }}

- name: Log in to DigitalOcean Container Registry with short-lived credentials
run: doctl registry login --expiry-seconds 3600

- name: Push to DigitalOcean Registry
run: |
docker push registry.digitalocean.com/ever/gauzy-api:latest

- name: Login to GitHub Container Registry
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Push to Github Registry
run: |
docker push ghcr.io/ever-co/gauzy-api:latest

- name: Login to CW Container Registry
uses: docker/login-action@v3
with:
registry: ${{ secrets.CW_DOCKER_REGISTRY }}
username: ${{ secrets.CW_DOCKER_USER }}
password: ${{ secrets.CW_DOCKER_USER_PASSWORD }}

# - name: Push to CW Registry
# run: |
# docker push ${{ secrets.CW_DOCKER_REGISTRY }}/ever-co/gauzy-api:latest

gauzy-webapp:

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}
runs-on: ubicloud-standard-16
runs-on: ubicloud-standard-8
steps:
- name: Checkout
uses: actions/checkout@v4

- name: Set up QEMU
uses: docker/setup-qemu-action@v3

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3

- name: Build
uses: docker/build-push-action@v5
with:
context: .
file: ./.deploy/webapp/Dockerfile
load: true
platforms: linux/amd64
tags: |
ghcr.io/ever-co/gauzy-webapp:latest
everco/gauzy-webapp:latest
registry.digitalocean.com/ever/gauzy-webapp:latest
${{ secrets.CW_DOCKER_REGISTRY }}/ever-co/gauzy-webapp:latest
cache-from: type=registry,ref=ghcr.io/ever-co/gauzy-webapp:latest
cache-to: type=inline
build-args: |
NODE_ENV=production

- name: Docker images list
run: |
sudo docker image list

- name: Login to DockerHub
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}

- name: Push to Docker Hub Registry
run: |
docker push everco/gauzy-webapp:latest

- name: Install doctl
uses: digitalocean/action-doctl@v2
with:
token: ${{ secrets.DIGITALOCEAN_ACCESS_TOKEN }}

- name: Log in to DigitalOcean Container Registry with short-lived credentials
run: doctl registry login --expiry-seconds 3600

- name: Push to DigitalOcean Registry
run: |
docker push registry.digitalocean.com/ever/gauzy-webapp:latest

- name: Login to GitHub Container Registry
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Push to Github Registry
run: |
docker push ghcr.io/ever-co/gauzy-webapp:latest

- name: Login to CW Container Registry
uses: docker/login-action@v3
with:
registry: ${{ secrets.CW_DOCKER_REGISTRY }}
username: ${{ secrets.CW_DOCKER_USER }}
password: ${{ secrets.CW_DOCKER_USER_PASSWORD }}

# - name: Push to CW Registry
# run: |
# docker push ${{ secrets.CW_DOCKER_REGISTRY }}/ever-co/gauzy-webapp:latest

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}
4 changes: 2 additions & 2 deletions .github/workflows/docker-build-publish-stage.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,157 +10,157 @@

jobs:
gauzy-api:
runs-on: ubicloud-standard-16
runs-on: ubicloud-standard-8
steps:
- name: Checkout
uses: actions/checkout@v4

- name: Set up QEMU
uses: docker/setup-qemu-action@v3

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
with:
driver: docker

- name: Build
uses: docker/build-push-action@v5
with:
context: .
file: ./.deploy/api/Dockerfile
load: true
platforms: linux/amd64
tags: |
ghcr.io/ever-co/gauzy-api-stage:latest
everco/gauzy-api-stage:latest
registry.digitalocean.com/ever/gauzy-api-stage:latest
${{ secrets.CW_DOCKER_REGISTRY }}/ever-co/gauzy-api-stage:latest
cache-from: type=registry,ref=ghcr.io/ever-co/gauzy-api-stage:latest
cache-to: type=inline
build-args: |
NODE_ENV=development

- name: Docker images list
run: |
sudo docker image list

- name: Login to DockerHub
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}

- name: Push to Docker Hub Registry
run: |
docker push everco/gauzy-api-stage:latest

- name: Install doctl
uses: digitalocean/action-doctl@v2
with:
token: ${{ secrets.DIGITALOCEAN_ACCESS_TOKEN }}

- name: Log in to DigitalOcean Container Registry with short-lived credentials
run: doctl registry login --expiry-seconds 3600

- name: Push to DigitalOcean Registry
run: |
docker push registry.digitalocean.com/ever/gauzy-api-stage:latest

- name: Login to GitHub Container Registry
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Push to Github Registry
run: |
docker push ghcr.io/ever-co/gauzy-api-stage:latest

- name: Login to CW Container Registry
uses: docker/login-action@v3
with:
registry: ${{ secrets.CW_DOCKER_REGISTRY }}
username: ${{ secrets.CW_DOCKER_USER }}
password: ${{ secrets.CW_DOCKER_USER_PASSWORD }}

# - name: Push to CW Registry
# run: |
# docker push ${{ secrets.CW_DOCKER_REGISTRY }}/ever-co/gauzy-api-stage:latest

gauzy-webapp:

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}
runs-on: ubicloud-standard-16
runs-on: ubicloud-standard-8
steps:
- name: Checkout
uses: actions/checkout@v4

- name: Set up QEMU
uses: docker/setup-qemu-action@v3

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3

- name: Build
uses: docker/build-push-action@v5
with:
context: .
file: ./.deploy/webapp/Dockerfile
load: true
platforms: linux/amd64
tags: |
ghcr.io/ever-co/gauzy-webapp-stage:latest
everco/gauzy-webapp-stage:latest
registry.digitalocean.com/ever/gauzy-webapp-stage:latest
${{ secrets.CW_DOCKER_REGISTRY }}/ever-co/gauzy-webapp-stage:latest
cache-from: type=registry,ref=ghcr.io/ever-co/gauzy-webapp-stage:latest
cache-to: type=inline
build-args: |
NODE_ENV=development

- name: Docker images list
run: |
sudo docker image list

- name: Login to DockerHub
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}

- name: Push to Docker Hub Registry
run: |
docker push everco/gauzy-webapp-stage:latest

- name: Install doctl
uses: digitalocean/action-doctl@v2
with:
token: ${{ secrets.DIGITALOCEAN_ACCESS_TOKEN }}

- name: Log in to DigitalOcean Container Registry with short-lived credentials
run: doctl registry login --expiry-seconds 3600

- name: Push to DigitalOcean Registry
run: |
docker push registry.digitalocean.com/ever/gauzy-webapp-stage:latest

- name: Login to GitHub Container Registry
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Push to Github Registry
run: |
docker push ghcr.io/ever-co/gauzy-webapp-stage:latest

- name: Login to CW Container Registry
uses: docker/login-action@v3
with:
registry: ${{ secrets.CW_DOCKER_REGISTRY }}
username: ${{ secrets.CW_DOCKER_USER }}
password: ${{ secrets.CW_DOCKER_USER_PASSWORD }}

# - name: Push to CW Registry
# run: |
# docker push ${{ secrets.CW_DOCKER_REGISTRY }}/ever-co/gauzy-webapp-stage:latest

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}
8 changes: 4 additions & 4 deletions .github/workflows/server-api-prod.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ jobs:

strategy:
matrix:
os: [ubicloud-standard-16]
os: [ubicloud-standard-8]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -90,7 +90,7 @@ jobs:

strategy:
matrix:
os: [ubicloud-standard-16-arm]
os: [ubicloud-standard-8-arm]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -171,7 +171,7 @@ jobs:

strategy:
matrix:
os: [warp-macos-15-arm64-12x]
os: [warp-macos-15-arm64-6x]

steps:
- name: Check out Git repository
Expand Down Expand Up @@ -237,7 +237,7 @@ jobs:

strategy:
matrix:
os: [warp-windows-latest-x64-16x]
os: [warp-windows-latest-x64-8x]

steps:
- name: Check out Git repository
Expand Down
Loading
Loading