Prepare Tests for Merge Queue Support (#1143) #210
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # SPDX-FileCopyrightText: 2026 Catalan Lover <catalanlover@protonmail.com> | |
| # | |
| # SPDX-License-Identifier: Apache-2.0 | |
| # This file is derived from the docker-hub-develop.yml workflow, but instead of pushing to Docker Hub, it pushes to GHCR. It also runs on all non excluded branches to allow easier access to development builds. | |
| name: "GHCR - Development Branches" | |
| on: | |
| push: | |
| branches-ignore: | |
| - "dependabot/**" | |
| - "renovate/**" | |
| - "github-actions/**" | |
| concurrency: | |
| group: ghcr-dev-${{ github.ref }} | |
| cancel-in-progress: true | |
| env: | |
| IMAGE_NAME: draupnir | |
| PLATFORMS: linux/amd64,linux/arm64 | |
| IMG_SOURCE: https://github.com/${{ github.repository }} | |
| jobs: | |
| ghcr-publish: | |
| runs-on: ubuntu-latest | |
| permissions: | |
| id-token: write | |
| packages: write | |
| contents: read | |
| attestations: write | |
| artifact-metadata: write | |
| steps: | |
| - name: Check out | |
| uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd | |
| with: | |
| fetch-depth: 0 | |
| fetch-tags: true | |
| - name: Set lowercase image owner | |
| id: image_owner | |
| run: | |
| echo "image_owner=$(echo '${{ github.repository_owner }}' | tr | |
| '[:upper:]' '[:lower:]')" >> $GITHUB_OUTPUT | |
| # Needed for multi platform builds | |
| - name: Set up QEMU | |
| uses: docker/setup-qemu-action@ce360397dd3f832beb865e1373c09c0e9f86d70a | |
| with: | |
| platforms: ${{ env.PLATFORMS }} | |
| - name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd | |
| - name: Log in to GHCR | |
| uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 | |
| with: | |
| registry: ghcr.io | |
| username: ${{ github.actor }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Derive image tags | |
| id: meta | |
| uses: docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf | |
| with: | |
| images: | |
| ghcr.io/${{ steps.image_owner.outputs.image_owner }}/${{ | |
| env.IMAGE_NAME }} | |
| tags: | | |
| type=ref,event=branch | |
| type=sha,prefix=sha- | |
| - name: Build image | |
| id: push | |
| uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f | |
| with: | |
| context: . | |
| file: ./Dockerfile | |
| platforms: ${{ env.PLATFORMS }} | |
| push: true | |
| # Shared Buildx cache scope reused by all container image workflows. | |
| # Keep the scope name aligned across workflows to maximize cache hits. | |
| cache-from: type=gha,scope=draupnir-container-build | |
| cache-to: type=gha,scope=draupnir-container-build,mode=max | |
| labels: | | |
| org.opencontainers.image.source=${{ env.IMG_SOURCE }} | |
| org.opencontainers.image.revision=${{ github.sha }} | |
| org.opencontainers.image.version=${{ github.ref_name }}-${{ github.sha }} | |
| org.opencontainers.image.ref.name=${{ github.ref_name }} | |
| org.opencontainers.image.licenses=Apache-2.0 | |
| # prettier-ignore | |
| outputs: type=image,name=target,annotation-index.org.opencontainers.image.description=Draupnir is a community management platform for Matrix. | |
| sbom: true | |
| provenance: true | |
| tags: ${{ steps.meta.outputs.tags }} | |
| - name: Attest pushed image | |
| uses: actions/attest@59d89421af93a897026c735860bf21b6eb4f7b26 | |
| with: | |
| # prettier-ignore | |
| subject-name: ghcr.io/${{ steps.image_owner.outputs.image_owner }}/${{ env.IMAGE_NAME }} | |
| subject-digest: ${{ steps.push.outputs.digest }} | |
| push-to-registry: true |