Publish Docker Image #2

	name: Publish Docker Image

	on: workflow_dispatch
	env:
	REGISTRY: ghcr.io
	IMAGE_NAME: ${{ github.repository }}

	jobs:
	build-and-push-image:
	runs-on: ubuntu-latest

	# Sets the permissions granted to the `GITHUB_TOKEN` for the actions in this job.
	permissions:
	contents: read
	packages: write
	attestations: write
	id-token: write

	steps:
	- name: Checkout repository
	uses: actions/checkout@v4
	with:
	ref: ${{ github.ref_name }}
	fetch-depth: 0
	submodules: 'true'
	fetch-tags: 'true'

	- name: Log in to the Container registry
	uses: docker/login-action@v3
	with:
	registry: ${{ env.REGISTRY }}
	username: ${{ github.actor }}
	password: ${{ secrets.GITHUB_TOKEN }}

	- name: Create tags
	id: git_tag_version
	run: \|
	TAG=$REGISTRY/$IMAGE_NAME:$(git describe --tags)
	COMMIT=$REGISTRY/$IMAGE_NAME:$REF_NAME
	VERSION=$REGISTRY/$IMAGE_NAME:latest
	echo "TAG1=${TAG,,}" >> $GITHUB_ENV
	echo "TAG2=${COMMIT,,}" >> $GITHUB_ENV
	echo "TAG3=${VERSION,,}" >> $GITHUB_ENV
	env:
	REGISTRY=${{ env.REGISTRY }}
	IMAGE_NAME=${{ env.IMAGE_NAME }}
	REF_NAME=${{ github.ref_name }}

	- name: Build and push Docker image
	id: push
	uses: docker/build-push-action@v6
	with:
	context: .
	file: build/docker/build.Dockerfile
	push: true
	tags: \|
	${{ env.TAG1 }}
	${{ env.TAG2 }}
	${{ env.TAG3 }}
	build-args: \|
	GIT_BRANCH=${{ github.ref_name }}
	GIT_REPO=https://github.com/${{ github.repository }}

	- name: Generate artifact attestation
	uses: actions/attest-build-provenance@v1
	with:
	subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME}}
	subject-digest: ${{ steps.push.outputs.digest }}
	push-to-registry: true

Provide feedback