Skip to content
⚙️ Build and deploy to ACR

INAGE-SCANNING #31

Sign in to view logs

INAGE-SCANNING

INAGE-SCANNING #31

Workflow file for this run

.github/workflows/deploy.yml at ad0a6ec
name: ⚙️ Build and deploy to ACR
on:
push:
branches:
- feature/image-scanning
permissions:
contents: read
packages: write
env:
WORKING_DIR: image-scanning
jobs:
build:
name: Docker Build
runs-on: ubuntu-latest
steps:
- name: 📁 Checkout repository
uses: actions/checkout@v4
- name: 🔧 Docker QEMU Setup
uses: docker/setup-qemu-action@v3
- name: 🛠️ Set up Docker Buildx
uses: docker/setup-buildx-action@v3
# - name: 🗝️ Login to Container Registry
# uses: azure/docker-login@v1
# with:
# login-server: ${{ secrets.REGISTRY_LOGIN_SERVER }}
# username: ${{ secrets.AZ_USERNAME }}
# password: ${{ secrets.AZ_PASSWORD }}
- name: 🔑 Login to GHCR
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}
# - name: 🔑 Login to Azure
# uses: azure/login@v1
# with:
# creds: ${{ secrets.AZURE_CREDENTIALS }}
- name: 📃 Docker metadata
id: meta
uses: docker/metadata-action@v5
with:
images: ghcr.io/${{ github.repository }}/${{ env.WORKING_DIR }}
flavor: |
latest=false
tags: |
type=raw,value=latest
type=semver,pattern=v{{version}}
type=semver,pattern=v{{major}}.{{minor}}
- name: 🐳 Docker Build & Push
uses: docker/build-push-action@v5
id: docker_build
with:
context: ./${{ env.WORKING_DIR }}
push: true
provenance: false
labels: ${{ steps.meta.outputs.labels }}
tags: ${{ steps.meta.outputs.tags }}
file: ./${{ env.WORKING_DIR }}/Dockerfile
secrets: |
"AZURE_TENANT_ID=${{ secrets.TRY_SECRET }}"