ci: add github actions (#40)

GitHub 

1. issue types
2. build docker for PR branch
3. build and publish main to docker hub

---------

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

Author: wasaga

.github/ISSUE_TEMPLATE/bug.md

@@ -0,0 +1,37 @@
+---
+name: Bug report
+about: Let us know about a bug!
+---
+
+**What happened?**
+
+**What did you expect to happen?**
+
+**How did it happen?**
+
+1. Ran `x`
+2. Clicked `y`
+3. Saw error `z`
+
+**What's your environment like?**
+
+- Pomerium version (retrieve with `pomerium --version`):
+- Server Operating System/Architecture/Cloud:
+
+**What's your config.yaml?**
+
+```config.yaml
+# Paste your configs here
+# Be sure to scrub any sensitive values
+```
+
+**What did you see in the logs?**
+
+```logs
+# Paste your logs here.
+# Be sure to scrub any sensitive values
+```
+
+**Additional context**
+
+Add any other context about the problem here.

.github/ISSUE_TEMPLATE/feature_request.md

@@ -0,0 +1,20 @@
+---
+name: Feature request
+about: Suggest something!
+---
+
+**Is your feature request related to a problem? Please describe.**
+
+A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
+
+**Describe the solution you'd like**
+
+**Describe alternatives you've considered**
+
+**Explain any additional use-cases**
+
+If there are any use-cases that would help us understand the use/need/value please share them as they can help us decide on acceptance and prioritization.
+
+**Additional context**
+
+Add any other context or screenshots about the feature request here.

.github/workflows/docker-main.yaml

@@ -0,0 +1,54 @@
+name: Docker Main
+permissions:
+  contents: read
+on:
+  push:
+    branches:
+      - main
+
+jobs:
+  publish:
+    runs-on: ubuntu-22.04
+    outputs:
+      sha-tag: ${{ steps.metadata.outputs.sha-tag }}
+      image: ${{ steps.metadata.outputs.image }}
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2
+
+      - name: Login to DockerHub
+        uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772
+        with:
+          username: ${{ secrets.DOCKERHUB_USER }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+
+      - name: Prepare Image Metadata
+        id: metadata
+        run: |
+          IMAGE=pomerium/mcp-app-demo
+          SHA_TAG=git-${GITHUB_SHA::8}
+          TAGS=${IMAGE}:main
+          TAGS=${TAGS},${IMAGE}:${SHA_TAG}
+          TS=$(date +%Y%m%d%H%M%S)
+          echo "tags=${TAGS}" >> $GITHUB_OUTPUT
+          echo "timestamp=${TS}" >> $GITHUB_OUTPUT
+          echo "name=pomerium-mcp-app-demo" >> $GITHUB_OUTPUT
+          echo "image=${IMAGE}" >> $GITHUB_OUTPUT
+          echo "sha-tag=${SHA_TAG}" >> $GITHUB_OUTPUT
+
+      - name: Docker Publish - Main
+        uses: docker/build-push-action@14487ce63c7a62a4a324b0bfb37086795e31c6c1
+        with:
+          context: .
+          file: ./Dockerfile
+          push: true
+          platforms: linux/amd64,linux/arm64
+          tags: ${{ steps.metadata.outputs.tags }}
+          labels: |
+            org.opencontainers.image.created=${{ steps.metadata.outputs.timestamp }}
+            org.opencontainers.image.name=${{ steps.metadata.outputs.name }}
+            org.opencontainers.image.revision=${{ github.sha }}

.github/workflows/test.yaml

@@ -0,0 +1,55 @@
+name: Docker Main
+permissions:
+  contents: read
+on:
+  pull_request:
+
+jobs:
+  publish:
+    runs-on: ubuntu-22.04
+    outputs:
+      sha-tag: ${{ steps.metadata.outputs.sha-tag }}
+      image: ${{ steps.metadata.outputs.image }}
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
+
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@29109295f81e9208d7d86ff1c6c12d2833863392
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2
+
+      - name: Login to DockerHub
+        uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772
+        with:
+          username: ${{ secrets.DOCKERHUB_USER }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+
+      - name: Prepare Image Metadata
+        id: metadata
+        run: |
+          IMAGE=pomerium/mcp-app-demo
+          SHA_TAG=git-${GITHUB_SHA::8}
+          TAGS=${IMAGE}:main
+          TAGS=${TAGS},${IMAGE}:${SHA_TAG}
+          TS=$(date +%Y%m%d%H%M%S)
+          echo "tags=${TAGS}" >> $GITHUB_OUTPUT
+          echo "timestamp=${TS}" >> $GITHUB_OUTPUT
+          echo "name=${IMAGE}" >> $GITHUB_OUTPUT
+          echo "image=${IMAGE}" >> $GITHUB_OUTPUT
+          echo "sha-tag=${SHA_TAG}" >> $GITHUB_OUTPUT
+
+      - name: Docker Publish - Main
+        uses: docker/build-push-action@14487ce63c7a62a4a324b0bfb37086795e31c6c1
+        with:
+          context: .
+          file: ./Dockerfile
+          push: false
+          platforms: linux/amd64
+          tags: ${{ steps.metadata.outputs.tags }}
+          labels: |
+            org.opencontainers.image.created=${{ steps.metadata.outputs.timestamp }}
+            org.opencontainers.image.name=${{ steps.metadata.outputs.name }}
+            org.opencontainers.image.revision=${{ github.sha }}