Compare commits
	
		
			362 Commits
		
	
	
		
	
	| Author | SHA1 | Date | |
|---|---|---|---|
|   | ca052bb54a | ||
|   | 025c2051f3 | ||
|   | 12076d2fb1 | ||
|   | ef6cba3353 | ||
|   | 4c16cf906a | ||
|   | a3118a86c8 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | c86eb8b0f7 | ||
|   | 2a53c6ccda | ||
|   | ccef1f210d | ||
|   | 79117b6ea5 | ||
|   | df19a799eb | ||
|   | 0e2ab16cd2 | ||
|   | 54d0f58d64 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 563a2f55e4 | ||
|   | 6003d3266a | ||
|   | e1e22cdde8 | ||
|   | fc15b64049 | ||
|   | 6c58ea3670 | ||
|   | 729f7f4926 | ||
|   | 99d83235bc | ||
|   | 1d5307d7af | ||
|   | cf8d130912 | ||
|   | 8804d8e2ac | ||
|   | 1984549052 | ||
|   | 5bc9e2e9b9 | ||
|   | eb539f44b1 | ||
|   | b6ff9e5753 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 929fba6cce | ||
|   | 7f1f43ba33 | ||
|   | 40d6a900e0 | ||
|   | d56be63626 | ||
|   | eb3cfeaf00 | ||
|   | d0fc12d8a4 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 68615d5b67 | ||
|   | c3b570184c | ||
|   | 7e6f77677b | ||
|   | 2ce6beaad4 | ||
|   | 4c8d1e6826 | ||
|   | b0312962ef | ||
|   | 96acf63e4c | ||
|   | f8bc7f4600 | ||
|   | c2064be02c | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 4f02f34098 | ||
|   | 090ca155fc | ||
|   | ec4854f780 | ||
|   | 2cdde995de | ||
|   | 008747aa03 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 1580753126 | ||
|   | 2a7db1d68a | ||
|   | 35e7dd5921 | ||
|   | af5a7ed5ba | ||
|   | 2a85189a6c | ||
|   | 6c2079483e | ||
|   | afdf0c0a67 | ||
|   | 00ae31ab6e | ||
|   | 701942b6e5 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 90e54d0b1d | ||
|   | 831ca179d3 | ||
|   | 6bd0e5492f | ||
|   | b3eddbb94c | ||
|   | ffd798c1f1 | ||
|   | 62d8db0960 | ||
|   | 8ab81cb898 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | d47e7c357d | ||
|   | 4976231911 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | d236adc992 | ||
|   | 94d76d3bc1 | ||
|   | 2b28f2a854 | ||
|   | 9f6f8c940b | ||
|   | 8411d080ee | ||
|   | 4a13e500e5 | ||
|   | 7416668686 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | b4f76a5dc6 | ||
|   | b7feb766fa | ||
|   | fae8018297 | ||
|   | b625868b13 | ||
|   | 5193ef1da6 | ||
|   | d3afd779e4 | ||
|   | 7a786bb2b9 | ||
|   | c66ae3adcf | ||
|   | 248131c7bf | ||
|   | b425c4cd5a | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 9834ce5b4d | ||
|   | fdf7f43ecf | ||
|   | e3a4c332fb | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | c48d200483 | ||
|   | 8d2cf95286 | ||
|   | 3c7915695f | ||
|   | 0a283b683f | ||
|   | c544b50d70 | ||
|   | dd31262fa7 | ||
|   | 5f01267817 | ||
|   | 0f847266c3 | ||
|   | ea8499618b | ||
|   | 4c1b68d83a | ||
|   | 5909c5bffe | ||
|   | 285730d174 | ||
|   | 4bbe0177ef | ||
|   | cc4d1d4d5f | ||
|   | e7d3750abc | ||
|   | 4556201a14 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 9fa62cfa91 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 8026f009fc | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 6b35a7a7f1 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | c6e64b478a | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | e2505c6383 | ||
|   | 0565240e2d | ||
|   | 3ab07f8801 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | b9e7e4daec | ||
|   | 04d1a3b049 | ||
|   | 1a4d1a13fb | ||
|   | 675965c0e1 | ||
|   | 58ee34cb6b | ||
|   | c97c4060bd | ||
|   | 47d5369e0b | ||
|   | 8895c7468f | ||
|   | 59ba712c53 | ||
|   | 0c20fff10d | ||
|   | 0a97817b6a | ||
|   | ec39ef320c | ||
|   | f46044b799 | ||
|   | 4e4ee680f6 | ||
|   | e86cf554b6 | ||
|   | daa0106f78 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | ce51e905a6 | ||
|   | 1fde16337d | ||
|   | ae311c520f | ||
|   | 9311bf5263 | ||
|   | b1654941ef | ||
|   | 12a9f89349 | ||
|   | 2036a561be | ||
|   | b1d46f11a2 | ||
|   | e5b2fc7017 | ||
|   | 24216ba114 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | eb33afda71 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 9407ba1305 | ||
|   | 429cdb70ad | ||
|   | 74a34eff3a | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 6787bde0a6 | ||
|   | 56932deb0a | ||
|   | 0681013357 | ||
|   | be4bf1099e | ||
|   | 9ec154c4b6 | ||
|   | 380260b6c7 | ||
|   | ac790be09a | ||
|   | dc0a85b056 | ||
|   | aca01f02d5 | ||
|   | 4b0752a2b1 | ||
|   | be06a9da57 | ||
|   | 19184b90ca | ||
|   | 57e90a56ab | ||
|   | 4fad532b9f | ||
|   | 413aee355f | ||
|   | f05b754b57 | ||
|   | 2f3765570b | ||
|   | 68d0dc20df | ||
|   | 1fd7f72e60 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | ea907fb0a4 | ||
|   | 2eb1c1961a | ||
|   | 27376fe2fc | ||
|   | c9330004c2 | ||
|   | dac08d41ad | ||
|   | 44ea916f6c | ||
|   | 0167eef179 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 91bf8bfc4d | ||
|   | a799b4decf | ||
|   | 87480bdf69 | ||
|   | f9efed53cc | ||
|   | 3580b78e04 | ||
|   | 91df6b874e | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | ea92b18afb | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 6f91eb31f7 | ||
|   | eafaea8d0f | ||
|   | ddd2a92197 | ||
|   | a54198e85a | ||
|   | 7e3a79c50d | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 4a730ce64b | ||
|   | 817ed59f97 | ||
|   | a3646c08f8 | ||
|   | 5c3465b033 | ||
|   | e9c0697e5b | ||
|   | e090350180 | ||
|   | f2a1d5e99d | ||
|   | 81f5252b54 | ||
|   | b3435979d1 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 80def7c74e | ||
|   | 35434f557a | ||
|   | d63c96254b | ||
|   | 21fe05ff59 | ||
|   | 097a3e23ac | ||
|   | d8823bfaed | ||
|   | 3a3620ed49 | ||
|   | 8082ebc6ea | ||
|   | a3ae207c14 | ||
|   | 4858a31f84 | ||
|   | d10433366f | ||
|   | ee5cabd9e3 | ||
|   | 7944f9a25b | ||
|   | c088e12d82 | ||
|   | e941dc0149 | ||
|   | 0d6f3e8936 | ||
|   | c779d8500d | ||
|   | b651cf69a6 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 0db6129a57 | ||
|   | 70cc701b9c | ||
|   | af7537dc3e | ||
|   | 2d8166c4b9 | ||
|   | 6a8fbf0dbc | ||
|   | f74fd039f3 | ||
|   | 695ee8547d | ||
|   | fd7264830a | ||
|   | 6842956e83 | ||
|   | 9d1b8fa4e2 | ||
|   | 17c742ea85 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 916f6873ae | ||
|   | a3f7a443f9 | ||
|   | 05e89e68aa | ||
|   | d16cc0b66f | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 306a0a9f50 | ||
|   | 55a3485913 | ||
|   | 71e9aaaf29 | ||
|   | 3b5e8027fc | ||
|   | 02d3266a89 | ||
|   | f403dafe18 | ||
|   | 1104d47137 | ||
|   | 838bf90c88 | ||
|   | 337a09d182 | ||
|   | 37abcedcc1 | ||
|   | 67109bc4b2 | ||
|   | d1b0eb0a29 | ||
|   | a0635fe7cd | ||
|   | f834265449 | ||
|   | 0191543e0b | ||
|   | 2a16835223 | ||
|   | 9b96801525 | ||
|   | 6afac853c9 | ||
|   | 3bfdd83cd7 | ||
|   | 316d5eb8b3 | ||
|   | 1d910c8aa2 | ||
|   | f9ccca010f | ||
|   | c40bf0fdf6 | ||
|   | 223ed1ebd4 | ||
|   | fdafae777b | ||
|   | 0cb700ffba | ||
|   | ee7989df81 | ||
|   | 74f883a069 | ||
|   | 0149503e26 | ||
|   | 26ce4f3617 | ||
|   | ed2672fc33 | ||
|   | 472ccddef1 | ||
|   | d235d2d5ea | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 2f519a7883 | ||
|   | 4eb68bb2ac | ||
|   | b4755849f0 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | ade1a6afe3 | ||
|   | 21d6059e1e | ||
|   | c2c50190db | ||
|   | a154a68da0 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 4ac90f5dca | ||
|   | 175d02bffe | ||
|   | 546378e7fb | ||
|   | ffe65bfc27 | ||
|   | d4c14fd006 | ||
|   | 6e95f19fb8 | ||
|   | 2a752d5a63 | ||
|   | c56af95754 | ||
|   | 75aaa63262 | ||
|   | f97d6e2850 | ||
|   | 47c00d78bf | ||
|   | 871b930e7a | ||
|   | 105bf59b00 | ||
|   | 48888e0b13 | ||
|   | 6b820ad47e | ||
|   | e1a10350ee | ||
|   | 0f5a7d48d5 | ||
|   | 6a6e8c7c14 | ||
|   | e189a1cb78 | ||
|   | 2cf0d6fbdc | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 3cde535b0c | ||
|   | 83a00fb5e6 | ||
|   | 1d5915004a | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 2e87529dad | ||
|   | e27bcee4eb | ||
|   | 71d260c49a | ||
|   | 965c6a410d | ||
|   | 08aa123a28 | ||
|   | 1527803881 | ||
|   | a49d9ab751 | ||
|   | cbb574ee73 | ||
|   | 8b56e74b48 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | a5024d816a | ||
|   | 2235b57edd | ||
|   | 15b9e74b95 | ||
|   | 48daa618bd | ||
|   | c84f382811 | ||
|   | cd5d0b79ea | ||
|   | 30a32246ba | ||
|   | 1f19633b92 | ||
|   | 67af6dc1d3 | ||
|   | 988cb093f2 | ||
|   | 1cb9d22b93 | ||
|   | 5ffbca1432 | ||
|   | a8d76c070a | ||
|   | 12b1e419c2 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 2a60beff0d | ||
|   | 5268745b5f | ||
|   | a2a27346c0 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 05d9e522ae | ||
|   | 42863b1282 | ||
|   | c372f73edc | ||
|   | d17cab8f42 | ||
|   | 4c2810ab91 | ||
|   | 307a009589 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | f2c26aa560 | ||
|   | a806b8fe18 | ||
|   | ae74c4950a | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 80c878df65 | ||
|   | a571ccfa72 | ||
|   | 283625c36b | ||
|   | bb751c2095 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 8d9444d675 | ||
|   | c5e6528d5d | ||
|   | ceb414dc73 | ||
|   | dda70725ed | ||
|   | e551b19e49 | ||
|   | 3554377aa3 | ||
|   | a62bc1b22b | ||
|   | c2085839e1 | ||
|   | fcd91249e5 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 0ebe720aed | ||
|   | 38b45804b5 | ||
|   | ba317382dc | ||
|   | 43721d2346 | ||
|   | 5ea21bf2ba | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 300b1bdff7 | ||
|   | 84580d7737 | ||
|   | a460b5e683 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 9f1392c9bf | ||
|   | 9472e90210 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 5accc8e023 | ||
|   | f7a2a67b4c | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | b905f177bc | ||
|   | 0779722168 | ||
|   | fd75456293 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | ada965aa7b | ||
|   | b5730d2471 | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 839389a46c | ||
|   | 34c1caa1ce | ||
|   | 6ff230f13e | ||
|   | 75c825aabc | ||
|   | 5f7b938b8c | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | 7ae34a20f3 | ||
|   | acb76cdd52 | ||
|   | 2d081a4fd5 | ||
|   | ac9327eae2 | ||
|   | 7c41daf2a5 | ||
|   | e115266953 | ||
|   | 50fa0058d9 | ||
|   | 309fb9180f | ||
| ![dependabot[bot]](/assets/img/avatar_default.png)  | db68526220 | ||
|   | fe02965b48 | ||
|   | 5af8693d82 | 
| @@ -1,2 +1,12 @@ | ||||
| /coverage | ||||
| /node_modules | ||||
|  | ||||
| # Dependency directories | ||||
| node_modules/ | ||||
| jspm_packages/ | ||||
|  | ||||
| # yarn v2 | ||||
| .yarn/cache | ||||
| .yarn/unplugged | ||||
| .yarn/build-state.yml | ||||
| .yarn/install-state.gz | ||||
| .pnp.* | ||||
|   | ||||
							
								
								
									
										3
									
								
								.eslintignore
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										3
									
								
								.eslintignore
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,3 @@ | ||||
| /dist/** | ||||
| /coverage/** | ||||
| /node_modules/** | ||||
							
								
								
									
										24
									
								
								.eslintrc.json
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										24
									
								
								.eslintrc.json
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,24 @@ | ||||
| { | ||||
|   "env": { | ||||
|     "node": true, | ||||
|     "es6": true, | ||||
|     "jest": true | ||||
|   }, | ||||
|   "extends": [ | ||||
|     "eslint:recommended", | ||||
|     "plugin:@typescript-eslint/eslint-recommended", | ||||
|     "plugin:@typescript-eslint/recommended", | ||||
|     "plugin:jest/recommended", | ||||
|     "plugin:prettier/recommended" | ||||
|   ], | ||||
|   "parser": "@typescript-eslint/parser", | ||||
|   "parserOptions": { | ||||
|     "ecmaVersion": 2023, | ||||
|     "sourceType": "module" | ||||
|   }, | ||||
|   "plugins": [ | ||||
|     "@typescript-eslint", | ||||
|     "jest", | ||||
|     "prettier" | ||||
|   ] | ||||
| } | ||||
							
								
								
									
										2
									
								
								.gitattributes
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										2
									
								
								.gitattributes
									
									
									
									
										vendored
									
									
								
							| @@ -1,2 +1,4 @@ | ||||
| /.yarn/releases/** binary | ||||
| /.yarn/plugins/** binary | ||||
| /dist/** linguist-generated=true | ||||
| /lib/** linguist-generated=true | ||||
|   | ||||
							
								
								
									
										1
									
								
								.github/CODEOWNERS
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										1
									
								
								.github/CODEOWNERS
									
									
									
									
										vendored
									
									
								
							| @@ -1 +0,0 @@ | ||||
| *	@crazy-max | ||||
							
								
								
									
										3
									
								
								.github/CODE_OF_CONDUCT.md
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										3
									
								
								.github/CODE_OF_CONDUCT.md
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @@ -0,0 +1,3 @@ | ||||
| # Code of conduct | ||||
|  | ||||
| - [Moby community guidelines](https://github.com/moby/moby/blob/master/CONTRIBUTING.md#moby-community-guidelines) | ||||
							
								
								
									
										101
									
								
								.github/ISSUE_TEMPLATE/bug.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										101
									
								
								.github/ISSUE_TEMPLATE/bug.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @@ -0,0 +1,101 @@ | ||||
| # https://docs.github.com/en/communities/using-templates-to-encourage-useful-issues-and-pull-requests/syntax-for-githubs-form-schema | ||||
| name: Bug Report | ||||
| description: Report a bug | ||||
| labels: | ||||
|   - status/triage | ||||
|  | ||||
| body: | ||||
|   - type: markdown | ||||
|     attributes: | ||||
|       value: | | ||||
|         Thank you for taking the time to report a bug! | ||||
|         If this is a security issue please report it to the [Docker Security team](mailto:security@docker.com). | ||||
|         Before submitting a bug report, check out the [Troubleshooting doc](https://github.com/docker/build-push-action/blob/master/TROUBLESHOOTING.md). | ||||
|  | ||||
|   - type: checkboxes | ||||
|     attributes: | ||||
|       label: Contributing guidelines | ||||
|       description: > | ||||
|         Make sure you've read the contributing guidelines before proceeding. | ||||
|       options: | ||||
|         - label: I've read the [contributing guidelines](https://github.com/docker/build-push-action/blob/master/.github/CONTRIBUTING.md) and wholeheartedly agree | ||||
|           required: true | ||||
|  | ||||
|   - type: checkboxes | ||||
|     attributes: | ||||
|       label: "I've found a bug, and:" | ||||
|       description: | | ||||
|         Make sure that your request fulfills all of the following requirements. | ||||
|         If one requirement cannot be satisfied, explain in detail why. | ||||
|       options: | ||||
|         - label: The documentation does not mention anything about my problem | ||||
|         - label: There are no open or closed issues that are related to my problem | ||||
|  | ||||
|   - type: textarea | ||||
|     attributes: | ||||
|       label: Description | ||||
|       description: > | ||||
|         Provide a brief description of the bug in 1-2 sentences. | ||||
|     validations: | ||||
|       required: true | ||||
|  | ||||
|   - type: textarea | ||||
|     attributes: | ||||
|       label: Expected behaviour | ||||
|       description: > | ||||
|         Describe precisely what you'd expect to happen. | ||||
|     validations: | ||||
|       required: true | ||||
|  | ||||
|   - type: textarea | ||||
|     attributes: | ||||
|       label: Actual behaviour | ||||
|       description: > | ||||
|         Describe precisely what is actually happening. | ||||
|     validations: | ||||
|       required: true | ||||
|  | ||||
|   - type: input | ||||
|     attributes: | ||||
|       label: Repository URL | ||||
|       description: > | ||||
|         Enter the URL of the repository where you are experiencing the | ||||
|         issue. If your repository is private, provide a link to a minimal | ||||
|         repository that reproduces the issue. | ||||
|  | ||||
|   - type: input | ||||
|     attributes: | ||||
|       label: Workflow run URL | ||||
|       description: > | ||||
|         Enter the URL of the GitHub Action workflow run, if public. | ||||
|  | ||||
|   - type: textarea | ||||
|     attributes: | ||||
|       label: YAML workflow | ||||
|       description: | | ||||
|         Provide the YAML of the workflow that's causing the issue. | ||||
|         Make sure to remove any sensitive information. | ||||
|       render: yaml | ||||
|     validations: | ||||
|       required: true | ||||
|  | ||||
|   - type: textarea | ||||
|     attributes: | ||||
|       label: Workflow logs | ||||
|       description: > | ||||
|         [Attach](https://docs.github.com/en/get-started/writing-on-github/working-with-advanced-formatting/attaching-files) | ||||
|         the [log file of your workflow run](https://docs.github.com/en/actions/managing-workflow-runs/using-workflow-run-logs#downloading-logs) | ||||
|         and make sure to remove any sensitive information. | ||||
|  | ||||
|   - type: textarea | ||||
|     attributes: | ||||
|       label: BuildKit logs | ||||
|       description: > | ||||
|         If applicable, provide the [BuildKit container logs](https://docs.docker.com/build/ci/github-actions/configure-builder/#buildkit-container-logs) | ||||
|       render: text | ||||
|  | ||||
|   - type: textarea | ||||
|     attributes: | ||||
|       label: Additional info | ||||
|       description: | | ||||
|         Provide any additional information that could be useful. | ||||
							
								
								
									
										37
									
								
								.github/ISSUE_TEMPLATE/bug_report.md
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										37
									
								
								.github/ISSUE_TEMPLATE/bug_report.md
									
									
									
									
										vendored
									
									
								
							| @@ -1,37 +0,0 @@ | ||||
| --- | ||||
| name: Bug report | ||||
| about: Create a report to help us improve | ||||
| --- | ||||
|  | ||||
| ### Troubleshooting | ||||
|  | ||||
| Before submitting a bug report please read the [Troubleshooting doc](https://github.com/docker/build-push-action/blob/master/TROUBLESHOOTING.md). | ||||
|  | ||||
| ### Behaviour | ||||
|  | ||||
| #### Steps to reproduce this issue | ||||
|  | ||||
| 1. | ||||
| 2. | ||||
| 3. | ||||
|  | ||||
| #### Expected behaviour | ||||
|  | ||||
| > Tell us what should happen | ||||
|  | ||||
| #### Actual behaviour | ||||
|  | ||||
| > Tell us what happens instead | ||||
|  | ||||
| ### Configuration | ||||
|  | ||||
| * Repository URL (if public):  | ||||
| * Build URL (if public):  | ||||
|  | ||||
| ```yml | ||||
| # paste your YAML workflow file here and remove sensitive data | ||||
| ``` | ||||
|  | ||||
| ### Logs | ||||
|  | ||||
| > Download the [log file of your build](https://docs.github.com/en/actions/managing-workflow-runs/using-workflow-run-logs#downloading-logs) and [attach it](https://docs.github.com/en/github/managing-your-work-on-github/file-attachments-on-issues-and-pull-requests) to this issue. | ||||
							
								
								
									
										9
									
								
								.github/ISSUE_TEMPLATE/config.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										9
									
								
								.github/ISSUE_TEMPLATE/config.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @@ -0,0 +1,9 @@ | ||||
| # https://docs.github.com/en/communities/using-templates-to-encourage-useful-issues-and-pull-requests/configuring-issue-templates-for-your-repository#configuring-the-template-chooser | ||||
| blank_issues_enabled: true | ||||
| contact_links: | ||||
|   - name: Questions and Discussions | ||||
|     url: https://github.com/docker/build-push-action/discussions/new | ||||
|     about: Use Github Discussions to ask questions and/or open discussion topics. | ||||
|   - name: Documentation | ||||
|     url: https://docs.docker.com/build/ci/github-actions/ | ||||
|     about: Read the documentation. | ||||
							
								
								
									
										15
									
								
								.github/ISSUE_TEMPLATE/feature.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										15
									
								
								.github/ISSUE_TEMPLATE/feature.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @@ -0,0 +1,15 @@ | ||||
| # https://docs.github.com/en/communities/using-templates-to-encourage-useful-issues-and-pull-requests/syntax-for-githubs-form-schema | ||||
| name: Feature request | ||||
| description: Missing functionality? Come tell us about it! | ||||
| labels: | ||||
|   - kind/enhancement | ||||
|   - status/triage | ||||
|  | ||||
| body: | ||||
|   - type: textarea | ||||
|     id: description | ||||
|     attributes: | ||||
|       label: Description | ||||
|       description: What is the feature you want to see? | ||||
|     validations: | ||||
|       required: true | ||||
							
								
								
									
										12
									
								
								.github/SECURITY.md
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										12
									
								
								.github/SECURITY.md
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @@ -0,0 +1,12 @@ | ||||
| # Reporting security issues | ||||
|  | ||||
| The project maintainers take security seriously. If you discover a security | ||||
| issue, please bring it to their attention right away! | ||||
|  | ||||
| **Please _DO NOT_ file a public issue**, instead send your report privately to | ||||
| [security@docker.com](mailto:security@docker.com). | ||||
|  | ||||
| Security reports are greatly appreciated, and we will publicly thank you for it. | ||||
| We also like to send gifts—if you'd like Docker swag, make sure to let | ||||
| us know. We currently do not offer a paid security bounty program, but are not | ||||
| ruling it out in the future. | ||||
							
								
								
									
										31
									
								
								.github/SUPPORT.md
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										31
									
								
								.github/SUPPORT.md
									
									
									
									
										vendored
									
									
								
							| @@ -1,31 +0,0 @@ | ||||
| # Support [](https://isitmaintained.com/project/docker/build-push-action) | ||||
|  | ||||
| First, [be a good guy](https://github.com/kossnocorp/etiquette/blob/master/README.md). | ||||
|  | ||||
| ## Reporting an issue | ||||
|  | ||||
| Please do a search in [open issues](https://github.com/docker/build-push-action/issues?utf8=%E2%9C%93&q=) to see if the issue or feature request has already been filed. | ||||
|  | ||||
| If you find your issue already exists, make relevant comments and add your [reaction](https://github.com/blog/2119-add-reactions-to-pull-requests-issues-and-comments). Use a reaction in place of a "+1" comment. | ||||
|  | ||||
| :+1: - upvote | ||||
|  | ||||
| :-1: - downvote | ||||
|  | ||||
| If you cannot find an existing issue that describes your bug or feature, submit an issue using the guidelines below. | ||||
|  | ||||
| ## Writing good bug reports and feature requests | ||||
|  | ||||
| File a single issue per problem and feature request. | ||||
|  | ||||
| * Do not enumerate multiple bugs or feature requests in the same issue. | ||||
| * Do not add your issue as a comment to an existing issue unless it's for the identical input. Many issues look similar, but have different causes. | ||||
|  | ||||
| The more information you can provide, the more likely someone will be successful reproducing the issue and finding a fix. | ||||
|  | ||||
| You are now ready to [create a new issue](https://github.com/docker/build-push-action/issues/new/choose)! | ||||
|  | ||||
| ## Closure policy | ||||
|  | ||||
| * Issues that don't have the information requested above (when applicable) will be closed immediately and the poster directed to the support guidelines. | ||||
| * Issues that go a week without a response from original poster are subject to closure at our discretion. | ||||
							
								
								
									
										1
									
								
								.github/dependabot.yml
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										1
									
								
								.github/dependabot.yml
									
									
									
									
										vendored
									
									
								
							| @@ -11,6 +11,7 @@ updates: | ||||
|     directory: "/" | ||||
|     schedule: | ||||
|       interval: "daily" | ||||
|     versioning-strategy: "increase" | ||||
|     allow: | ||||
|       - dependency-type: "production" | ||||
|     labels: | ||||
|   | ||||
							
								
								
									
										5
									
								
								.github/e2e/distribution/env
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										5
									
								
								.github/e2e/distribution/env
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @@ -0,0 +1,5 @@ | ||||
| REGISTRY_FQDN=localhost:8080 | ||||
| REGISTRY_SLUG=localhost:8080/test-docker-action | ||||
|  | ||||
| DISTRIBUTION_HOST=localhost | ||||
| DISTRIBUTION_PORT=8080 | ||||
							
								
								
									
										13
									
								
								.github/e2e/distribution/install.sh
									
									
									
									
										vendored
									
									
										Executable file
									
								
							
							
						
						
									
										13
									
								
								.github/e2e/distribution/install.sh
									
									
									
									
										vendored
									
									
										Executable file
									
								
							| @@ -0,0 +1,13 @@ | ||||
| #!/usr/bin/env bash | ||||
| set -eu | ||||
|  | ||||
| : "${DISTRIBUTION_VERSION:=2}" | ||||
| : "${DISTRIBUTION_HOST:=localhost}" | ||||
| : "${DISTRIBUTION_PORT:=8080}" | ||||
|  | ||||
| echo "::group::Starting registry:${DISTRIBUTION_VERSION}" | ||||
| ( | ||||
|   set -x | ||||
|   docker run -d --name registry -p "${DISTRIBUTION_PORT}:5000" "registry:${DISTRIBUTION_VERSION}" | ||||
| ) | ||||
| echo "::endgroup::" | ||||
							
								
								
									
										8
									
								
								.github/e2e/harbor/env
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										8
									
								
								.github/e2e/harbor/env
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @@ -0,0 +1,8 @@ | ||||
| REGISTRY_FQDN=localhost:8081 | ||||
| REGISTRY_USER=admin | ||||
| REGISTRY_PASSWORD=Harbor12345 | ||||
| REGISTRY_SLUG=localhost:8081/test-docker-action/test-docker-action | ||||
|  | ||||
| HARBOR_HOST=localhost | ||||
| HARBOR_PORT=8081 | ||||
| HARBOR_PROJECT=test-docker-action | ||||
							
								
								
									
										79
									
								
								.github/e2e/harbor/install.sh
									
									
									
									
										vendored
									
									
										Executable file
									
								
							
							
						
						
									
										79
									
								
								.github/e2e/harbor/install.sh
									
									
									
									
										vendored
									
									
										Executable file
									
								
							| @@ -0,0 +1,79 @@ | ||||
| #!/usr/bin/env bash | ||||
| set -eu | ||||
|  | ||||
| : "${HARBOR_VERSION:=v2.7.0}" | ||||
| : "${HARBOR_HOST:=localhost}" | ||||
| : "${HARBOR_PORT:=49154}" | ||||
| : "${REGISTRY_USER:=admin}" | ||||
| : "${REGISTRY_PASSWORD:=Harbor12345}" | ||||
|  | ||||
| : "${HARBOR_PROJECT:=test-docker-action}" | ||||
|  | ||||
| project_post_data() { | ||||
|   cat <<EOF | ||||
| { | ||||
|   "project_name": "$HARBOR_PROJECT", | ||||
|   "public": true | ||||
| } | ||||
| EOF | ||||
| } | ||||
|  | ||||
| export TERM=xterm | ||||
|  | ||||
| # download | ||||
| echo "::group::Downloading Harbor $HARBOR_VERSION" | ||||
| ( | ||||
|   cd /tmp | ||||
|   set -x | ||||
|   wget -q "https://github.com/goharbor/harbor/releases/download/${HARBOR_VERSION}/harbor-offline-installer-${HARBOR_VERSION}.tgz" -O harbor-online-installer.tgz | ||||
|   tar xvf harbor-online-installer.tgz | ||||
| ) | ||||
| echo "::endgroup::" | ||||
|  | ||||
| # config | ||||
| echo "::group::Configuring Harbor" | ||||
| ( | ||||
|   cd /tmp/harbor | ||||
|   set -x | ||||
|   cp harbor.yml.tmpl harbor.yml | ||||
|   harborConfig="$(harborHost="$HARBOR_HOST" harborPort="$HARBOR_PORT" harborPwd="$REGISTRY_PASSWORD" yq --no-colors '.hostname = env(harborHost) | .http.port = env(harborPort) | .harbor_admin_password = env(harborPwd) | del(.https)' harbor.yml)" | ||||
|   tee harbor.yml <<<"$harborConfig" >/dev/null | ||||
|   yq --no-colors harbor.yml | ||||
| ) | ||||
| echo "::endgroup::" | ||||
|  | ||||
| # install and start | ||||
| echo "::group::Installing Harbor" | ||||
| ( | ||||
|   cd /tmp/harbor | ||||
|   set -x | ||||
|   ./install.sh | ||||
|   sleep 10 | ||||
|   netstat -aptn | ||||
| ) | ||||
| echo "::endgroup::" | ||||
|  | ||||
| # compose config | ||||
| echo "::group::Compose config" | ||||
| ( | ||||
|   cd /tmp/harbor | ||||
|   set -x | ||||
|   docker compose config | ||||
| ) | ||||
| echo "::endgroup::" | ||||
|  | ||||
| # create project | ||||
| echo "::group::Creating project" | ||||
| ( | ||||
|   set -x | ||||
|   curl --fail -v -k --max-time 10 -u "$REGISTRY_USER:$REGISTRY_PASSWORD" -X POST -H "Content-Type: application/json" -d "$(project_post_data)" "http://$HARBOR_HOST:$HARBOR_PORT/api/v2.0/projects" | ||||
| ) | ||||
| echo "::endgroup::" | ||||
|  | ||||
| # list projects | ||||
| echo "::group::List projects" | ||||
| ( | ||||
|   set -x | ||||
|   curl --fail -s -k --max-time 10 -u "$REGISTRY_USER:$REGISTRY_PASSWORD" -H "Content-Type: application/json" "http://$HARBOR_HOST:$HARBOR_PORT/api/v2.0/projects" | jq | ||||
| ) | ||||
| echo "::endgroup::" | ||||
							
								
								
									
										8
									
								
								.github/e2e/nexus/docker-compose.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										8
									
								
								.github/e2e/nexus/docker-compose.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @@ -0,0 +1,8 @@ | ||||
| services: | ||||
|   nexus: | ||||
|     image: sonatype/nexus3:${NEXUS_VERSION:-latest} | ||||
|     volumes: | ||||
|       - "./data:/nexus-data" | ||||
|     ports: | ||||
|       - "8081:8081" | ||||
|       - "8082:8082" | ||||
							
								
								
									
										9
									
								
								.github/e2e/nexus/env
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										9
									
								
								.github/e2e/nexus/env
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @@ -0,0 +1,9 @@ | ||||
| REGISTRY_FQDN=localhost:8082 | ||||
| REGISTRY_USER=admin | ||||
| REGISTRY_PASSWORD=Nexus12345 | ||||
| REGISTRY_SLUG=localhost:8082/test-docker-action | ||||
|  | ||||
| NEXUS_HOST=localhost | ||||
| NEXUS_PORT=8081 | ||||
| NEXUS_REGISTRY_PORT=8082 | ||||
| NEXUS_REPO=test-docker-action | ||||
							
								
								
									
										93
									
								
								.github/e2e/nexus/install.sh
									
									
									
									
										vendored
									
									
										Executable file
									
								
							
							
						
						
									
										93
									
								
								.github/e2e/nexus/install.sh
									
									
									
									
										vendored
									
									
										Executable file
									
								
							| @@ -0,0 +1,93 @@ | ||||
| #!/usr/bin/env bash | ||||
| set -eu | ||||
|  | ||||
| SCRIPT_DIR=$(cd -- "$( dirname -- "${BASH_SOURCE[0]}" )" &> /dev/null && pwd) | ||||
|  | ||||
| : "${NEXUS_VERSION:=3.47.1}" | ||||
| : "${NEXUS_HOST:=localhost}" | ||||
| : "${NEXUS_PORT:=8081}" | ||||
| : "${NEXUS_REGISTRY_PORT:=8082}" | ||||
| : "${REGISTRY_USER:=admin}" | ||||
| : "${REGISTRY_PASSWORD:=Nexus12345}" | ||||
|  | ||||
| : "${NEXUS_REPO:=test-docker-action}" | ||||
|  | ||||
| createrepo_post_data() { | ||||
|   cat <<EOF | ||||
| { | ||||
|   "name": "${NEXUS_REPO}", | ||||
|   "online": true, | ||||
|   "storage": { | ||||
|     "blobStoreName": "default", | ||||
|     "strictContentTypeValidation": true, | ||||
|     "writePolicy": "ALLOW" | ||||
|   }, | ||||
|   "docker": { | ||||
|     "v1Enabled": false, | ||||
|     "forceBasicAuth": true, | ||||
|     "httpPort": ${NEXUS_REGISTRY_PORT}, | ||||
|     "httpsPort": null, | ||||
|     "subdomain": null | ||||
|   } | ||||
| } | ||||
| EOF | ||||
| } | ||||
|  | ||||
| export NEXUS_VERSION | ||||
|  | ||||
| mkdir -p /tmp/nexus/data | ||||
| chown 200:200 /tmp/nexus/data | ||||
| cp "${SCRIPT_DIR}/docker-compose.yml" /tmp/nexus/docker-compose.yml | ||||
|  | ||||
| echo "::group::Pulling Nexus $NEXUS_VERSION" | ||||
| ( | ||||
|   cd /tmp/nexus | ||||
|   set -x | ||||
|   docker compose pull | ||||
| ) | ||||
| echo "::endgroup::" | ||||
|  | ||||
| echo "::group::Compose config" | ||||
| ( | ||||
|   cd /tmp/nexus | ||||
|   set -x | ||||
|   docker compose config | ||||
| ) | ||||
| echo "::endgroup::" | ||||
|  | ||||
| echo "::group::Running Nexus" | ||||
| ( | ||||
|   cd /tmp/nexus | ||||
|   set -x | ||||
|   docker compose up -d | ||||
| ) | ||||
| echo "::endgroup::" | ||||
|  | ||||
| echo "::group::Running Nexus" | ||||
| ( | ||||
|   cd /tmp/nexus | ||||
|   set -x | ||||
|   docker compose up -d | ||||
| ) | ||||
| echo "::endgroup::" | ||||
|  | ||||
| echo "::group::Waiting for Nexus to be ready" | ||||
| until $(curl --output /dev/null --silent --head --fail "http://$NEXUS_HOST:$NEXUS_PORT"); do | ||||
|   printf '.' | ||||
|   sleep 5 | ||||
| done | ||||
| echo "::endgroup::" | ||||
|  | ||||
| echo "::group::Change user's password" | ||||
| ( | ||||
|   set -x | ||||
|   curl --fail -v -k --max-time 10 -u "$REGISTRY_USER:$(cat /tmp/nexus/data/admin.password)" -X PUT -H 'Content-Type: text/plain' -d "$REGISTRY_PASSWORD" "http://$NEXUS_HOST:$NEXUS_PORT/service/rest/v1/security/users/$REGISTRY_USER/change-password" | ||||
| ) | ||||
| echo "::endgroup::" | ||||
|  | ||||
| echo "::group::Create Docker repository" | ||||
| ( | ||||
|   set -x | ||||
|   curl --fail -v -k --max-time 10 -u "$REGISTRY_USER:$REGISTRY_PASSWORD" -X POST -H 'Content-Type: application/json' -d "$(createrepo_post_data)" "http://$NEXUS_HOST:$NEXUS_PORT/service/rest/v1/repositories/docker/hosted" | ||||
| ) | ||||
| echo "::endgroup::" | ||||
							
								
								
									
										130
									
								
								.github/workflows/.e2e-run.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										130
									
								
								.github/workflows/.e2e-run.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @@ -0,0 +1,130 @@ | ||||
| # reusable workflow | ||||
| name: .e2e-run | ||||
|  | ||||
| on: | ||||
|   workflow_call: | ||||
|     inputs: | ||||
|       id: | ||||
|         required: false | ||||
|         type: string | ||||
|       type: | ||||
|         required: true | ||||
|         type: string | ||||
|       name: | ||||
|         required: true | ||||
|         type: string | ||||
|       registry: | ||||
|         required: false | ||||
|         type: string | ||||
|       slug: | ||||
|         required: false | ||||
|         type: string | ||||
|       username_secret: | ||||
|         required: false | ||||
|         type: string | ||||
|       password_secret: | ||||
|         required: false | ||||
|         type: string | ||||
|  | ||||
| env: | ||||
|   HARBOR_VERSION: v2.7.0 | ||||
|   NEXUS_VERSION: 3.47.1 | ||||
|   DISTRIBUTION_VERSION: 2.8.1 | ||||
|  | ||||
| jobs: | ||||
|   run: | ||||
|     runs-on: ubuntu-latest | ||||
|     strategy: | ||||
|       fail-fast: false | ||||
|       matrix: | ||||
|         include: | ||||
|           - | ||||
|             buildx_version: latest | ||||
|             buildkit_image: moby/buildkit:buildx-stable-1 | ||||
|           - | ||||
|             buildx_version: https://github.com/docker/buildx.git#master | ||||
|             buildkit_image: moby/buildkit:master | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v4 | ||||
|       - | ||||
|         name: Set up env | ||||
|         if: inputs.type == 'local' | ||||
|         run: | | ||||
|           cat ./.github/e2e/${{ inputs.id }}/env >> $GITHUB_ENV | ||||
|       - | ||||
|         name: Set up BuildKit config | ||||
|         run: | | ||||
|           touch /tmp/buildkitd.toml | ||||
|           if [ "${{ inputs.type }}" = "local" ]; then | ||||
|             echo -e "[registry.\"${{ env.REGISTRY_FQDN }}\"]\nhttp = true\ninsecure = true" > /tmp/buildkitd.toml | ||||
|           fi | ||||
|       - | ||||
|         name: Set up Docker daemon | ||||
|         if: inputs.type == 'local' | ||||
|         run: | | ||||
|           if [ ! -e /etc/docker/daemon.json ]; then | ||||
|             echo '{}' | tee /etc/docker/daemon.json >/dev/null | ||||
|           fi | ||||
|           DOCKERD_CONFIG=$(jq '.+{"insecure-registries":["http://${{ env.REGISTRY_FQDN }}"]}' /etc/docker/daemon.json) | ||||
|           sudo tee /etc/docker/daemon.json <<<"$DOCKERD_CONFIG" >/dev/null | ||||
|           sudo service docker restart | ||||
|       - | ||||
|         name: Install ${{ inputs.name }} | ||||
|         if: inputs.type == 'local' | ||||
|         run: | | ||||
|           sudo -E bash ./.github/e2e/${{ inputs.id }}/install.sh | ||||
|           sudo chown $(id -u):$(id -g) -R ~/.docker | ||||
|       - | ||||
|         name: Docker meta | ||||
|         id: meta | ||||
|         uses: docker/metadata-action@v5 | ||||
|         with: | ||||
|           images: ${{ env.REGISTRY_SLUG || inputs.slug }} | ||||
|           tags: | | ||||
|             type=ref,event=branch,enable=${{ matrix.buildx_version == 'latest' && matrix.buildkit_image == 'moby/buildkit:buildx-stable-1' }} | ||||
|             type=ref,event=tag,enable=${{ matrix.buildx_version == 'latest' && matrix.buildkit_image == 'moby/buildkit:buildx-stable-1' }} | ||||
|             type=raw,gh-runid-${{ github.run_id }} | ||||
|       - | ||||
|         name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v3 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v3 | ||||
|         with: | ||||
|           version: ${{ matrix.buildx_version }} | ||||
|           buildkitd-config: /tmp/buildkitd.toml | ||||
|           buildkitd-flags: --debug --allow-insecure-entitlement security.insecure --allow-insecure-entitlement network.host | ||||
|           driver-opts: | | ||||
|             image=${{ matrix.buildkit_image }} | ||||
|             network=host | ||||
|       - | ||||
|         name: Login to Registry | ||||
|         if: github.event_name != 'pull_request' && (env.REGISTRY_USER || inputs.username_secret) != '' | ||||
|         uses: docker/login-action@v3 | ||||
|         with: | ||||
|           registry: ${{ env.REGISTRY_FQDN || inputs.registry }} | ||||
|           username: ${{ env.REGISTRY_USER || secrets[inputs.username_secret] }} | ||||
|           password: ${{ env.REGISTRY_PASSWORD || secrets[inputs.password_secret] }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: ./ | ||||
|         with: | ||||
|           context: ./test | ||||
|           file: ./test/multi.Dockerfile | ||||
|           platforms: linux/386,linux/amd64,linux/arm/v6,linux/arm/v7,linux/arm64,linux/ppc64le,linux/s390x | ||||
|           push: ${{ github.event_name != 'pull_request' }} | ||||
|           tags: ${{ steps.meta.outputs.tags }} | ||||
|           labels: ${{ steps.meta.outputs.labels }} | ||||
|           cache-from: type=registry,ref=${{ env.REGISTRY_SLUG || inputs.slug }}:master | ||||
|           cache-to: type=inline | ||||
|       - | ||||
|         name: Inspect image | ||||
|         run: | | ||||
|           docker pull ${{ env.REGISTRY_SLUG || inputs.slug }}:${{ steps.meta.outputs.version }} | ||||
|           docker image inspect ${{ env.REGISTRY_SLUG || inputs.slug }}:${{ steps.meta.outputs.version }} | ||||
|       - | ||||
|         name: Check manifest | ||||
|         run: | | ||||
|           docker buildx imagetools inspect ${{ env.REGISTRY_SLUG || inputs.slug }}:${{ steps.meta.outputs.version }} --format '{{json .}}' | ||||
							
								
								
									
										1191
									
								
								.github/workflows/ci.yml
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										1191
									
								
								.github/workflows/ci.yml
									
									
									
									
										vendored
									
									
								
							
										
											
												File diff suppressed because it is too large
												Load Diff
											
										
									
								
							
							
								
								
									
										112
									
								
								.github/workflows/e2e.yml
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										112
									
								
								.github/workflows/e2e.yml
									
									
									
									
										vendored
									
									
								
							| @@ -1,5 +1,9 @@ | ||||
| name: e2e | ||||
|  | ||||
| concurrency: | ||||
|   group: ${{ github.workflow }}-${{ github.ref }} | ||||
|   cancel-in-progress: true | ||||
|  | ||||
| on: | ||||
|   workflow_dispatch: | ||||
|   schedule: | ||||
| @@ -8,103 +12,103 @@ on: | ||||
|     branches: | ||||
|       - 'master' | ||||
|     tags: | ||||
|       - v* | ||||
|       - 'v*' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|   build: | ||||
|     uses: ./.github/workflows/.e2e-run.yml | ||||
|     strategy: | ||||
|       fail-fast: false | ||||
|       matrix: | ||||
|         include: | ||||
|           - | ||||
|             name: Distribution | ||||
|             id: distribution | ||||
|             type: local | ||||
|           - | ||||
|             name: Docker Hub | ||||
|             registry: '' | ||||
|             slug: ghactionstest/ghactionstest | ||||
|             username_secret: DOCKERHUB_USERNAME | ||||
|             password_secret: DOCKERHUB_TOKEN | ||||
|             type: remote | ||||
|           - | ||||
|             name: GitHub | ||||
|             registry: ghcr.io | ||||
|             slug: ghcr.io/docker-ghactiontest/test | ||||
|             username_secret: GHCR_USERNAME | ||||
|             password_secret: GHCR_PAT | ||||
|             type: remote | ||||
|           - | ||||
|             name: GitLab | ||||
|             registry: registry.gitlab.com | ||||
|             slug: registry.gitlab.com/test1716/test | ||||
|             username_secret: GITLAB_USERNAME | ||||
|             password_secret: GITLAB_TOKEN | ||||
|             type: remote | ||||
|           - | ||||
|             name: AWS ECR | ||||
|             registry: 175142243308.dkr.ecr.us-east-2.amazonaws.com | ||||
|             slug: 175142243308.dkr.ecr.us-east-2.amazonaws.com/sandbox/test-docker-action | ||||
|             username_secret: AWS_ACCESS_KEY_ID | ||||
|             password_secret: AWS_SECRET_ACCESS_KEY | ||||
|             type: remote | ||||
|           - | ||||
|             name: AWS ECR Public | ||||
|             registry: public.ecr.aws | ||||
|             slug: public.ecr.aws/q3b5f1u4/test-docker-action | ||||
|             username_secret: AWS_ACCESS_KEY_ID | ||||
|             password_secret: AWS_SECRET_ACCESS_KEY | ||||
|             type: remote | ||||
|           - | ||||
|             name: Google Artifact Registry | ||||
|             registry: us-east4-docker.pkg.dev | ||||
|             slug: us-east4-docker.pkg.dev/sandbox-298914/docker-official-github-actions/test-docker-action | ||||
|             username_secret: GAR_USERNAME | ||||
|             password_secret: GAR_JSON_KEY | ||||
|             type: remote | ||||
|           - | ||||
|             name: Google Container Registry | ||||
|             registry: gcr.io | ||||
|             slug: gcr.io/sandbox-298914/test-docker-action | ||||
|             username_secret: GCR_USERNAME | ||||
|             password_secret: GCR_JSON_KEY | ||||
|             type: remote | ||||
|           - | ||||
|             name: Azure Container Registry | ||||
|             registry: officialgithubactions.azurecr.io | ||||
|             slug: officialgithubactions.azurecr.io/test-docker-action | ||||
|             username_secret: AZURE_CLIENT_ID | ||||
|             password_secret: AZURE_CLIENT_SECRET | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Docker meta | ||||
|         id: meta | ||||
|         uses: docker/metadata-action@v3 | ||||
|         with: | ||||
|           images: ${{ matrix.slug }} | ||||
|       - | ||||
|         name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v1 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Login to Registry | ||||
|         if: github.event_name != 'pull_request' | ||||
|         uses: docker/login-action@v1 | ||||
|         with: | ||||
|           registry: ${{ matrix.registry }} | ||||
|           username: ${{ secrets[matrix.username_secret] }} | ||||
|           password: ${{ secrets[matrix.password_secret] }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: ./ | ||||
|         with: | ||||
|           context: ./test | ||||
|           file: ./test/multi.Dockerfile | ||||
|           platforms: linux/386,linux/amd64,linux/arm/v6,linux/arm/v7,linux/arm64,linux/ppc64le,linux/s390x | ||||
|           push: ${{ github.event_name != 'pull_request' }} | ||||
|           tags: ${{ steps.meta.outputs.tags }} | ||||
|           labels: ${{ steps.meta.outputs.labels }} | ||||
|           cache-from: type=registry,ref=${{ matrix.slug }}:master | ||||
|           cache-to: type=inline | ||||
|       - | ||||
|         name: Inspect image | ||||
|         if: github.event_name != 'pull_request' | ||||
|         run: | | ||||
|           docker pull ${{ matrix.slug }}:${{ steps.meta.outputs.version }} | ||||
|           docker image inspect ${{ matrix.slug }}:${{ steps.meta.outputs.version }} | ||||
|       - | ||||
|         name: Check manifest | ||||
|         if: github.event_name != 'pull_request' | ||||
|         run: | | ||||
|           docker buildx imagetools inspect ${{ matrix.slug }}:${{ steps.meta.outputs.version }} | ||||
|       - | ||||
|         name: Dump context | ||||
|         if: always() | ||||
|         uses: crazy-max/ghaction-dump-context@v1 | ||||
|             type: remote | ||||
|           - | ||||
|             name: Quay | ||||
|             registry: quay.io | ||||
|             slug: quay.io/docker_build_team/ghactiontest | ||||
|             username_secret: QUAY_USERNAME | ||||
|             password_secret: QUAY_TOKEN | ||||
|             type: remote | ||||
|           - | ||||
|             name: Artifactory | ||||
|             registry: infradock.jfrog.io | ||||
|             slug: infradock.jfrog.io/test-ghaction/build-push-action | ||||
|             username_secret: ARTIFACTORY_USERNAME | ||||
|             password_secret: ARTIFACTORY_TOKEN | ||||
|             type: remote | ||||
|           - | ||||
|             name: Harbor | ||||
|             id: harbor | ||||
|             type: local | ||||
|           - | ||||
|             name: Nexus | ||||
|             id: nexus | ||||
|             type: local | ||||
|     with: | ||||
|       id: ${{ matrix.id }} | ||||
|       type: ${{ matrix.type }} | ||||
|       name: ${{ matrix.name }} | ||||
|       registry: ${{ matrix.registry }} | ||||
|       slug: ${{ matrix.slug }} | ||||
|       username_secret: ${{ matrix.username_secret }} | ||||
|       password_secret: ${{ matrix.password_secret }} | ||||
|     secrets: inherit | ||||
|   | ||||
							
								
								
									
										78
									
								
								.github/workflows/example.yml
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										78
									
								
								.github/workflows/example.yml
									
									
									
									
										vendored
									
									
								
							| @@ -1,78 +0,0 @@ | ||||
| # This workflow is provided just as an example and not for repo testing/verification | ||||
| name: example | ||||
|  | ||||
| on: | ||||
|   schedule: | ||||
|     - cron: '0 10 * * 0' | ||||
|   push: | ||||
|     branches: | ||||
|       - '**' | ||||
|     tags: | ||||
|       - 'v*.*.*' | ||||
|   pull_request: | ||||
|  | ||||
| env: | ||||
|   DOCKER_IMAGE: localhost:5000/name/app | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     services: | ||||
|       registry: | ||||
|         image: registry:2 | ||||
|         ports: | ||||
|           - 5000:5000 | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Docker meta | ||||
|         id: meta | ||||
|         uses: docker/metadata-action@v3 | ||||
|         with: | ||||
|           images: ${{ env.DOCKER_IMAGE }} | ||||
|           tags: | | ||||
|             type=schedule | ||||
|             type=ref,event=branch | ||||
|             type=ref,event=pr | ||||
|             type=semver,pattern={{version}} | ||||
|             type=semver,pattern={{major}}.{{minor}} | ||||
|             type=semver,pattern={{major}} | ||||
|             type=sha | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|         with: | ||||
|           driver-opts: network=host | ||||
|       - | ||||
|         name: Build and export to Docker client | ||||
|         uses: ./ | ||||
|         with: | ||||
|           context: ./test | ||||
|           file: ./test/Dockerfile | ||||
|           load: true | ||||
|           tags: ${{ steps.meta.outputs.tags }} | ||||
|           labels: ${{ steps.meta.outputs.labels }} | ||||
|       - | ||||
|         name: Build and push to local registry | ||||
|         uses: ./ | ||||
|         with: | ||||
|           context: ./test | ||||
|           file: ./test/Dockerfile | ||||
|           push: ${{ github.event_name != 'pull_request' }} | ||||
|           tags: ${{ steps.meta.outputs.tags }} | ||||
|           labels: ${{ steps.meta.outputs.labels }} | ||||
|       - | ||||
|         name: Inspect image | ||||
|         run: | | ||||
|           docker image inspect ${{ env.DOCKER_IMAGE }}:${{ steps.meta.outputs.version }} | ||||
|       - | ||||
|         name: Check manifest | ||||
|         if: github.event_name != 'pull_request' | ||||
|         run: | | ||||
|           docker buildx imagetools inspect ${{ env.DOCKER_IMAGE }}:${{ steps.meta.outputs.version }} | ||||
|       - | ||||
|         name: Dump context | ||||
|         if: always() | ||||
|         uses: crazy-max/ghaction-dump-context@v1 | ||||
							
								
								
									
										19
									
								
								.github/workflows/test.yml
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										19
									
								
								.github/workflows/test.yml
									
									
									
									
										vendored
									
									
								
							| @@ -1,12 +1,15 @@ | ||||
| name: test | ||||
|  | ||||
| concurrency: | ||||
|   group: ${{ github.workflow }}-${{ github.ref }} | ||||
|   cancel-in-progress: true | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'master' | ||||
|       - 'releases/v*' | ||||
|   pull_request: | ||||
|     branches: | ||||
|       - 'master' | ||||
|  | ||||
| jobs: | ||||
|   test: | ||||
| @@ -14,19 +17,15 @@ jobs: | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Validate | ||||
|         uses: docker/bake-action@v1 | ||||
|         with: | ||||
|           targets: validate | ||||
|         uses: actions/checkout@v4 | ||||
|       - | ||||
|         name: Test | ||||
|         uses: docker/bake-action@v1 | ||||
|         uses: docker/bake-action@v4 | ||||
|         with: | ||||
|           targets: test | ||||
|       - | ||||
|         name: Upload coverage | ||||
|         uses: codecov/codecov-action@v2 | ||||
|         uses: codecov/codecov-action@v4 | ||||
|         with: | ||||
|           file: ./coverage/clover.xml | ||||
|           token: ${{ secrets.CODECOV_TOKEN }} | ||||
|   | ||||
							
								
								
									
										45
									
								
								.github/workflows/validate.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										45
									
								
								.github/workflows/validate.yml
									
									
									
									
										vendored
									
									
										Normal file
									
								
							| @@ -0,0 +1,45 @@ | ||||
| name: validate | ||||
|  | ||||
| concurrency: | ||||
|   group: ${{ github.workflow }}-${{ github.ref }} | ||||
|   cancel-in-progress: true | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'master' | ||||
|       - 'releases/v*' | ||||
|   pull_request: | ||||
|  | ||||
| jobs: | ||||
|   prepare: | ||||
|     runs-on: ubuntu-latest | ||||
|     outputs: | ||||
|       targets: ${{ steps.targets.outputs.matrix }} | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v4 | ||||
|       - | ||||
|         name: Targets matrix | ||||
|         id: targets | ||||
|         run: | | ||||
|           echo "matrix=$(docker buildx bake validate --print | jq -cr '.group.validate.targets')" >> $GITHUB_OUTPUT | ||||
|  | ||||
|   validate: | ||||
|     runs-on: ubuntu-latest | ||||
|     needs: | ||||
|       - prepare | ||||
|     strategy: | ||||
|       fail-fast: false | ||||
|       matrix: | ||||
|         target: ${{ fromJson(needs.prepare.outputs.targets) }} | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v4 | ||||
|       - | ||||
|         name: Validate | ||||
|         uses: docker/bake-action@v4 | ||||
|         with: | ||||
|           targets: ${{ matrix.target }} | ||||
							
								
								
									
										43
									
								
								.github/workflows/virtual-env.yml
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										43
									
								
								.github/workflows/virtual-env.yml
									
									
									
									
										vendored
									
									
								
							| @@ -1,43 +0,0 @@ | ||||
| name: virtual-env | ||||
|  | ||||
| on: | ||||
|   workflow_dispatch: | ||||
|   schedule: | ||||
|     - cron: '0 10 * * *' | ||||
|  | ||||
| jobs: | ||||
|   os: | ||||
|     runs-on: ${{ matrix.os }} | ||||
|     strategy: | ||||
|       fail-fast: false | ||||
|       matrix: | ||||
|         os: | ||||
|           - ubuntu-latest | ||||
|           - ubuntu-20.04 | ||||
|           - ubuntu-18.04 | ||||
|     steps: | ||||
|       - | ||||
|         name: File system | ||||
|         run: df -ah | ||||
|       - | ||||
|         name: List install packages | ||||
|         run: apt list --installed | ||||
|       - | ||||
|         name: Docker info | ||||
|         run: docker info | ||||
|       - | ||||
|         name: Docker version | ||||
|         run: docker version | ||||
|       - | ||||
|         name: buildx version | ||||
|         run: docker buildx version | ||||
|       - | ||||
|         name: containerd version | ||||
|         run: containerd --version | ||||
|       - | ||||
|         name: Docker images | ||||
|         run: docker image ls | ||||
|       - | ||||
|         name: Dump context | ||||
|         if: always() | ||||
|         uses: crazy-max/ghaction-dump-context@v1 | ||||
							
								
								
									
										70
									
								
								.gitignore
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										70
									
								
								.gitignore
									
									
									
									
										vendored
									
									
								
							| @@ -1,11 +1,5 @@ | ||||
| node_modules | ||||
| lib | ||||
| # https://raw.githubusercontent.com/github/gitignore/main/Node.gitignore | ||||
|  | ||||
| # Jetbrains | ||||
| /.idea | ||||
| /*.iml | ||||
|  | ||||
| # Rest of the file pulled from https://github.com/github/gitignore/blob/master/Node.gitignore | ||||
| # Logs | ||||
| logs | ||||
| *.log | ||||
| @@ -13,6 +7,7 @@ npm-debug.log* | ||||
| yarn-debug.log* | ||||
| yarn-error.log* | ||||
| lerna-debug.log* | ||||
| .pnpm-debug.log* | ||||
|  | ||||
| # Diagnostic reports (https://nodejs.org/api/report.html) | ||||
| report.[0-9]*.[0-9]*.[0-9]*.[0-9]*.json | ||||
| @@ -23,34 +18,14 @@ pids | ||||
| *.seed | ||||
| *.pid.lock | ||||
|  | ||||
| # Directory for instrumented libs generated by jscoverage/JSCover | ||||
| lib-cov | ||||
|  | ||||
| # Coverage directory used by tools like istanbul | ||||
| coverage | ||||
| *.lcov | ||||
|  | ||||
| # nyc test coverage | ||||
| .nyc_output | ||||
|  | ||||
| # Grunt intermediate storage (https://gruntjs.com/creating-plugins#storing-task-files) | ||||
| .grunt | ||||
|  | ||||
| # Bower dependency directory (https://bower.io/) | ||||
| bower_components | ||||
|  | ||||
| # node-waf configuration | ||||
| .lock-wscript | ||||
|  | ||||
| # Compiled binary addons (https://nodejs.org/api/addons.html) | ||||
| build/Release | ||||
|  | ||||
| # Dependency directories | ||||
| node_modules/ | ||||
| jspm_packages/ | ||||
|  | ||||
| # TypeScript v1 declaration files | ||||
| typings/ | ||||
|  | ||||
| # TypeScript cache | ||||
| *.tsbuildinfo | ||||
|  | ||||
| @@ -60,36 +35,19 @@ typings/ | ||||
| # Optional eslint cache | ||||
| .eslintcache | ||||
|  | ||||
| # Optional REPL history | ||||
| .node_repl_history | ||||
|  | ||||
| # Output of 'npm pack' | ||||
| *.tgz | ||||
|  | ||||
| # Yarn Integrity file | ||||
| .yarn-integrity | ||||
|  | ||||
| # dotenv environment variables file | ||||
| # dotenv environment variable files | ||||
| .env | ||||
| .env.test | ||||
| .env.development.local | ||||
| .env.test.local | ||||
| .env.production.local | ||||
| .env.local | ||||
|  | ||||
| # parcel-bundler cache (https://parceljs.org/) | ||||
| .cache | ||||
|  | ||||
| # next.js build output | ||||
| .next | ||||
|  | ||||
| # nuxt.js build output | ||||
| .nuxt | ||||
|  | ||||
| # vuepress build output | ||||
| .vuepress/dist | ||||
|  | ||||
| # Serverless directories | ||||
| .serverless/ | ||||
|  | ||||
| # FuseBox cache | ||||
| .fusebox/ | ||||
|  | ||||
| # DynamoDB Local files | ||||
| .dynamodb/ | ||||
| # yarn v2 | ||||
| .yarn/cache | ||||
| .yarn/unplugged | ||||
| .yarn/build-state.yml | ||||
| .yarn/install-state.gz | ||||
| .pnp.* | ||||
|   | ||||
							
								
								
									
										6
									
								
								.prettierignore
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										6
									
								
								.prettierignore
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,6 @@ | ||||
| # Dependency directories | ||||
| node_modules/ | ||||
| jspm_packages/ | ||||
|  | ||||
| # yarn v2 | ||||
| .yarn/ | ||||
							
								
								
									
										541
									
								
								.yarn/plugins/@yarnpkg/plugin-interactive-tools.cjs
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										541
									
								
								.yarn/plugins/@yarnpkg/plugin-interactive-tools.cjs
									
									
									
									
										vendored
									
									
										Normal file
									
								
							
										
											
												File diff suppressed because one or more lines are too long
											
										
									
								
							
							
								
								
									
										13
									
								
								.yarnrc.yml
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										13
									
								
								.yarnrc.yml
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,13 @@ | ||||
| logFilters: | ||||
|   - code: YN0013 | ||||
|     level: discard | ||||
|   - code: YN0019 | ||||
|     level: discard | ||||
|   - code: YN0076 | ||||
|     level: discard | ||||
|  | ||||
| nodeLinker: node-modules | ||||
|  | ||||
| plugins: | ||||
|   - path: .yarn/plugins/@yarnpkg/plugin-interactive-tools.cjs | ||||
|     spec: "@yarnpkg/plugin-interactive-tools" | ||||
							
								
								
									
										231
									
								
								README.md
									
									
									
									
									
								
							
							
						
						
									
										231
									
								
								README.md
									
									
									
									
									
								
							| @@ -1,14 +1,15 @@ | ||||
| [](https://github.com/docker/build-push-action/releases/latest) | ||||
| [](https://github.com/marketplace/actions/build-and-push-docker-images) | ||||
| [](https://github.com/docker/build-push-action/actions?workflow=ci) | ||||
| [](https://github.com/docker/build-push-action/actions?workflow=test) | ||||
| [](https://github.com/docker/build-push-action/actions?workflow=ci) | ||||
| [](https://github.com/docker/build-push-action/actions?workflow=test) | ||||
| [](https://codecov.io/gh/docker/build-push-action) | ||||
|  | ||||
| ## About | ||||
|  | ||||
| GitHub Action to build and push Docker images with [Buildx](https://github.com/docker/buildx) with full support of the | ||||
| features provided by [Moby BuildKit](https://github.com/moby/buildkit) builder toolkit. This includes multi-platform | ||||
| build, secrets, remote cache, etc. and different builder deployment/namespacing options. | ||||
| GitHub Action to build and push Docker images with [Buildx](https://github.com/docker/buildx) | ||||
| with full support of the features provided by [Moby BuildKit](https://github.com/moby/buildkit) | ||||
| builder toolkit. This includes multi-platform build, secrets, remote cache, etc. | ||||
| and different builder deployment/namespacing options. | ||||
|  | ||||
|  | ||||
|  | ||||
| @@ -17,43 +18,49 @@ ___ | ||||
| * [Usage](#usage) | ||||
|   * [Git context](#git-context) | ||||
|   * [Path context](#path-context) | ||||
| * [Advanced usage](#advanced-usage) | ||||
|   * [Multi-platform image](docs/advanced/multi-platform.md) | ||||
|   * [Secrets](docs/advanced/secrets.md) | ||||
|   * [Isolated builders](docs/advanced/isolated-builders.md) | ||||
|   * [Push to multi-registries](docs/advanced/push-multi-registries.md) | ||||
|   * [Copy between registries](docs/advanced/copy-between-registries.md)   | ||||
|   * [Cache](docs/advanced/cache.md) | ||||
|   * [Local registry](docs/advanced/local-registry.md) | ||||
|   * [Export image to Docker](docs/advanced/export-docker.md) | ||||
|   * [Share built image between jobs](docs/advanced/share-image-jobs.md) | ||||
|   * [Test your image before pushing it](docs/advanced/test-before-push.md) | ||||
|   * [Handle tags and labels](docs/advanced/tags-labels.md) | ||||
|   * [Update DockerHub repo description](docs/advanced/dockerhub-desc.md) | ||||
| * [Examples](#examples) | ||||
|   * [Multi-platform image](https://docs.docker.com/build/ci/github-actions/multi-platform/) | ||||
|   * [Secrets](https://docs.docker.com/build/ci/github-actions/secrets/) | ||||
|   * [Push to multi-registries](https://docs.docker.com/build/ci/github-actions/push-multi-registries/) | ||||
|   * [Manage tags and labels](https://docs.docker.com/build/ci/github-actions/manage-tags-labels/) | ||||
|   * [Cache management](https://docs.docker.com/build/ci/github-actions/cache/) | ||||
|   * [Export to Docker](https://docs.docker.com/build/ci/github-actions/export-docker/) | ||||
|   * [Test before push](https://docs.docker.com/build/ci/github-actions/test-before-push/) | ||||
|   * [Local registry](https://docs.docker.com/build/ci/github-actions/local-registry/) | ||||
|   * [Share built image between jobs](https://docs.docker.com/build/ci/github-actions/share-image-jobs/) | ||||
|   * [Named contexts](https://docs.docker.com/build/ci/github-actions/named-contexts/) | ||||
|   * [Copy image between registries](https://docs.docker.com/build/ci/github-actions/copy-image-registries/) | ||||
|   * [Update Docker Hub repo description](https://docs.docker.com/build/ci/github-actions/update-dockerhub-desc/) | ||||
|   * [SBOM and provenance attestations](https://docs.docker.com/build/ci/github-actions/attestations/) | ||||
|   * [Annotations](https://docs.docker.com/build/ci/github-actions/annotations/) | ||||
|   * [Reproducible builds](https://docs.docker.com/build/ci/github-actions/reproducible-builds/) | ||||
| * [Customizing](#customizing) | ||||
|   * [inputs](#inputs) | ||||
|   * [outputs](#outputs) | ||||
| * [Troubleshooting](#troubleshooting) | ||||
| * [Keep up-to-date with GitHub Dependabot](#keep-up-to-date-with-github-dependabot) | ||||
| * [Contributing](#contributing) | ||||
|  | ||||
| ## Usage | ||||
|  | ||||
| In the examples below we are also using 3 other actions: | ||||
|  | ||||
| * [`setup-buildx`](https://github.com/docker/setup-buildx-action) action will create and boot a builder using by  | ||||
| default the `docker-container` [builder driver](https://github.com/docker/buildx/blob/master/docs/reference/buildx_create.md#driver). | ||||
| This is **not required but recommended** using it to be able to build multi-platform images, export cache, etc. | ||||
| * [`setup-qemu`](https://github.com/docker/setup-qemu-action) action can be useful if you want | ||||
| to add emulation support with QEMU to be able to build against more platforms.  | ||||
| * [`login`](https://github.com/docker/login-action) action will take care to log in against a Docker registry. | ||||
| * [`setup-buildx`](https://github.com/docker/setup-buildx-action) action will | ||||
|   create and boot a builder using by default the [`docker-container` driver](https://docs.docker.com/build/building/drivers/docker-container/). | ||||
|   This is **not required but recommended** using it to be able to build | ||||
|   multi-platform images, export cache, etc. | ||||
| * [`setup-qemu`](https://github.com/docker/setup-qemu-action) action can be | ||||
|   useful if you want to add emulation support with QEMU to be able to build | ||||
|   against more platforms.  | ||||
| * [`login`](https://github.com/docker/login-action) action will take care to | ||||
|   log in against a Docker registry. | ||||
|  | ||||
| ### Git context | ||||
|  | ||||
| By default, this action uses the [Git context](#git-context) so you don't need | ||||
| to use the [`actions/checkout`](https://github.com/actions/checkout/) action to | ||||
| check out the repository because this will be done directly by [BuildKit](https://github.com/moby/buildkit). | ||||
| By default, this action uses the [Git context](https://docs.docker.com/engine/reference/commandline/build/#git-repositories), | ||||
| so you don't need to use the [`actions/checkout`](https://github.com/actions/checkout/) | ||||
| action to check out the repository as this will be done directly by [BuildKit](https://github.com/moby/buildkit). | ||||
|  | ||||
| The git reference will be based on the [event that triggered your workflow](https://docs.github.com/en/actions/reference/events-that-trigger-workflows) | ||||
| The git reference will be based on the [event that triggered your workflow](https://docs.github.com/en/actions/using-workflows/events-that-trigger-workflows) | ||||
| and will result in the following context: `https://github.com/<owner>/<repo>.git#<ref>`. | ||||
|  | ||||
| ```yaml | ||||
| @@ -70,19 +77,19 @@ jobs: | ||||
|     steps: | ||||
|       - | ||||
|         name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v1 | ||||
|         uses: docker/setup-qemu-action@v3 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|         uses: docker/setup-buildx-action@v3 | ||||
|       - | ||||
|         name: Login to DockerHub | ||||
|         uses: docker/login-action@v1  | ||||
|         name: Login to Docker Hub | ||||
|         uses: docker/login-action@v3 | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         uses: docker/build-push-action@v5 | ||||
|         with: | ||||
|           push: true | ||||
|           tags: user/app:latest | ||||
| @@ -100,25 +107,29 @@ expression `{{defaultContext}}`. Here we can use it to provide a subdirectory | ||||
| to the default Git context: | ||||
|  | ||||
| ```yaml | ||||
|       - | ||||
|         # Setting up Docker Buildx with docker-container driver is required | ||||
|         # at the moment to be able to use a subdirectory with Git context | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v3 | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         uses: docker/build-push-action@v5 | ||||
|         with: | ||||
|           context: "{{defaultContext}}:mysubdir" | ||||
|           push: true | ||||
|           tags: user/app:latest | ||||
| ``` | ||||
| > :warning: Subdirectory for Git context is not yet available for the buildx [`docker` driver](https://github.com/docker/buildx/blob/master/docs/reference/buildx_create.md#driver). | ||||
|  | ||||
| Building from the current repository automatically uses the [GitHub Token](https://help.github.com/en/actions/configuring-and-managing-workflows/authenticating-with-the-github_token) | ||||
| Building from the current repository automatically uses the [GitHub Token](https://docs.github.com/en/actions/security-guides/automatic-token-authentication), | ||||
| so it does not need to be passed. If you want to authenticate against another | ||||
| private repository, you have to use a [secret](docs/advanced/secrets.md) named | ||||
| `GIT_AUTH_TOKEN` to be able to authenticate against it with buildx: | ||||
| private repository, you have to use a [secret](https://docs.docker.com/build/ci/github-actions/secrets) | ||||
| named `GIT_AUTH_TOKEN` to be able to authenticate against it with Buildx: | ||||
|  | ||||
| ```yaml | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         uses: docker/build-push-action@v5 | ||||
|         with: | ||||
|           push: true | ||||
|           tags: user/app:latest | ||||
| @@ -142,42 +153,45 @@ jobs: | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|         uses: actions/checkout@v4 | ||||
|       - | ||||
|         name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v1 | ||||
|         uses: docker/setup-qemu-action@v3 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|         uses: docker/setup-buildx-action@v3 | ||||
|       - | ||||
|         name: Login to DockerHub | ||||
|         uses: docker/login-action@v1 | ||||
|         name: Login to Docker Hub | ||||
|         uses: docker/login-action@v3 | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         uses: docker/build-push-action@v5 | ||||
|         with: | ||||
|           context: . | ||||
|           push: true | ||||
|           tags: user/app:latest | ||||
| ``` | ||||
|  | ||||
| ## Advanced usage | ||||
| ## Examples | ||||
|  | ||||
| * [Multi-platform image](docs/advanced/multi-platform.md) | ||||
| * [Secrets](docs/advanced/secrets.md) | ||||
| * [Isolated builders](docs/advanced/isolated-builders.md) | ||||
| * [Push to multi-registries](docs/advanced/push-multi-registries.md) | ||||
| * [Copy between registries](docs/advanced/copy-between-registries.md) | ||||
| * [Cache](docs/advanced/cache.md) | ||||
| * [Local registry](docs/advanced/local-registry.md) | ||||
| * [Export image to Docker](docs/advanced/export-docker.md) | ||||
| * [Share built image between jobs](docs/advanced/share-image-jobs.md) | ||||
| * [Test your image before pushing it](docs/advanced/test-before-push.md) | ||||
| * [Handle tags and labels](docs/advanced/tags-labels.md) | ||||
| * [Update DockerHub repo description](docs/advanced/dockerhub-desc.md) | ||||
| * [Multi-platform image](https://docs.docker.com/build/ci/github-actions/multi-platform/) | ||||
| * [Secrets](https://docs.docker.com/build/ci/github-actions/secrets/) | ||||
| * [Push to multi-registries](https://docs.docker.com/build/ci/github-actions/push-multi-registries/) | ||||
| * [Manage tags and labels](https://docs.docker.com/build/ci/github-actions/manage-tags-labels/) | ||||
| * [Cache management](https://docs.docker.com/build/ci/github-actions/cache/) | ||||
| * [Export to Docker](https://docs.docker.com/build/ci/github-actions/export-docker/) | ||||
| * [Test before push](https://docs.docker.com/build/ci/github-actions/test-before-push/) | ||||
| * [Local registry](https://docs.docker.com/build/ci/github-actions/local-registry/) | ||||
| * [Share built image between jobs](https://docs.docker.com/build/ci/github-actions/share-image-jobs/) | ||||
| * [Named contexts](https://docs.docker.com/build/ci/github-actions/named-contexts/) | ||||
| * [Copy image between registries](https://docs.docker.com/build/ci/github-actions/copy-image-registries/) | ||||
| * [Update Docker Hub repo description](https://docs.docker.com/build/ci/github-actions/update-dockerhub-desc/) | ||||
| * [SBOM and provenance attestations](https://docs.docker.com/build/ci/github-actions/attestations/) | ||||
| * [Annotations](https://docs.docker.com/build/ci/github-actions/annotations/) | ||||
| * [Reproducible builds](https://docs.docker.com/build/ci/github-actions/reproducible-builds/) | ||||
|  | ||||
| ## Customizing | ||||
|  | ||||
| @@ -197,69 +211,56 @@ Following inputs can be used as `step.with` keys | ||||
| > tags: name/app:latest,name/app:1.0.0 | ||||
| > ``` | ||||
|  | ||||
| | Name                | Type     | Description                        | | ||||
| |---------------------|----------|------------------------------------| | ||||
| | `add-hosts`         | List/CSV | List of [customs host-to-IP mapping](https://docs.docker.com/engine/reference/commandline/build/#add-entries-to-container-hosts-file---add-host) (e.g., `docker:10.180.0.1`) | | ||||
| | `allow`             | List/CSV | List of [extra privileged entitlement](https://github.com/docker/buildx/blob/master/docs/reference/buildx_build.md#allow) (e.g., `network.host,security.insecure`) | | ||||
| | `builder`           | String   | Builder instance (see [setup-buildx](https://github.com/docker/setup-buildx-action) action) | | ||||
| | `build-args`        | List     | List of build-time variables | | ||||
| | `cache-from`        | List     | List of [external cache sources](https://github.com/docker/buildx/blob/master/docs/reference/buildx_build.md#cache-from) (e.g., `type=local,src=path/to/dir`) | | ||||
| | `cache-to`          | List     | List of [cache export destinations](https://github.com/docker/buildx/blob/master/docs/reference/buildx_build.md#cache-to) (e.g., `type=local,dest=path/to/dir`) | | ||||
| | `cgroup-parent`¹    | String   | Optional [parent cgroup](https://docs.docker.com/engine/reference/commandline/build/#use-a-custom-parent-cgroup---cgroup-parent) for the container used in the build | | ||||
| | `context`           | String   | Build's context is the set of files located in the specified [`PATH` or `URL`](https://docs.docker.com/engine/reference/commandline/build/) (default [Git context](#git-context)) | | ||||
| | `file`              | String   | Path to the Dockerfile. (default `{context}/Dockerfile`) | | ||||
| | `labels`            | List     | List of metadata for an image | | ||||
| | `load`              | Bool     | [Load](https://github.com/docker/buildx/blob/master/docs/reference/buildx_build.md#load) is a shorthand for `--output=type=docker` (default `false`) | | ||||
| | `network`           | String   | Set the networking mode for the `RUN` instructions during build | | ||||
| | `no-cache`          | Bool     | Do not use cache when building the image (default `false`) | | ||||
| | `outputs`           | List     | List of [output destinations](https://github.com/docker/buildx/blob/master/docs/reference/buildx_build.md#output) (format: `type=local,dest=path`) | | ||||
| | `platforms`         | List/CSV | List of [target platforms](https://github.com/docker/buildx/blob/master/docs/reference/buildx_build.md#platform) for build | | ||||
| | `pull`              | Bool     | Always attempt to pull a newer version of the image (default `false`) | | ||||
| | `push`              | Bool     | [Push](https://github.com/docker/buildx/blob/master/docs/reference/buildx_build.md#push) is a shorthand for `--output=type=registry` (default `false`) | | ||||
| | `secrets`           | List     | List of secrets to expose to the build (e.g., `key=string`, `GIT_AUTH_TOKEN=mytoken`) | | ||||
| | `secret-files`      | List     | List of secret files to expose to the build (e.g., `key=filename`, `MY_SECRET=./secret.txt`) | | ||||
| | `shm-size`¹         | String   | Size of [`/dev/shm`](https://github.com/docker/buildx/blob/master/docs/reference/buildx_build.md#-size-of-devshm---shm-size) (e.g., `2g`) | | ||||
| | `ssh`               | List     | List of SSH agent socket or keys to expose to the build | | ||||
| | `tags`              | List/CSV | List of tags | | ||||
| | `target`            | String   | Sets the target stage to build | | ||||
| | `ulimit`¹           | List     | [Ulimit](https://github.com/docker/buildx/blob/master/docs/reference/buildx_build.md#-set-ulimits---ulimit) options (e.g., `nofile=1024:1024`) | | ||||
| | `github-token`      | String   | GitHub Token used to authenticate against a repository for [Git context](#git-context) (default `${{ github.token }}`) | | ||||
|  | ||||
| > ¹ `cgroup-parent`, `shm-size` and `ulimit` are only available using `moby/buildkit:master` | ||||
| > as builder image atm: | ||||
| > ```yaml | ||||
| > - name: Set up Docker Buildx | ||||
| >   uses: docker/setup-buildx-action@v1 | ||||
| >   with: | ||||
| >   driver-opts: | | ||||
| >     image=moby/buildkit:master | ||||
| > ``` | ||||
| | Name               | Type        | Description                                                                                                                                                                       | | ||||
| |--------------------|-------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| | ||||
| | `add-hosts`        | List/CSV    | List of [customs host-to-IP mapping](https://docs.docker.com/engine/reference/commandline/build/#add-entries-to-container-hosts-file---add-host) (e.g., `docker:10.180.0.1`)      | | ||||
| | `allow`            | List/CSV    | List of [extra privileged entitlement](https://docs.docker.com/engine/reference/commandline/buildx_build/#allow) (e.g., `network.host,security.insecure`)                         | | ||||
| | `annotations`      | List        | List of annotation to set to the image                                                                                                                                            | | ||||
| | `attests`          | List        | List of [attestation](https://docs.docker.com/build/attestations/) parameters (e.g., `type=sbom,generator=image`)                                                                 |  | ||||
| | `builder`          | String      | Builder instance (see [setup-buildx](https://github.com/docker/setup-buildx-action) action)                                                                                       | | ||||
| | `build-args`       | List        | List of [build-time variables](https://docs.docker.com/engine/reference/commandline/buildx_build/#build-arg)                                                                      | | ||||
| | `build-contexts`   | List        | List of additional [build contexts](https://docs.docker.com/engine/reference/commandline/buildx_build/#build-context) (e.g., `name=path`)                                         | | ||||
| | `cache-from`       | List        | List of [external cache sources](https://docs.docker.com/engine/reference/commandline/buildx_build/#cache-from) (e.g., `type=local,src=path/to/dir`)                              | | ||||
| | `cache-to`         | List        | List of [cache export destinations](https://docs.docker.com/engine/reference/commandline/buildx_build/#cache-to) (e.g., `type=local,dest=path/to/dir`)                            | | ||||
| | `cgroup-parent`    | String      | Optional [parent cgroup](https://docs.docker.com/engine/reference/commandline/build/#use-a-custom-parent-cgroup---cgroup-parent) for the container used in the build              | | ||||
| | `context`          | String      | Build's context is the set of files located in the specified [`PATH` or `URL`](https://docs.docker.com/engine/reference/commandline/build/) (default [Git context](#git-context)) | | ||||
| | `file`             | String      | Path to the Dockerfile. (default `{context}/Dockerfile`)                                                                                                                          | | ||||
| | `labels`           | List        | List of metadata for an image                                                                                                                                                     | | ||||
| | `load`             | Bool        | [Load](https://docs.docker.com/engine/reference/commandline/buildx_build/#load) is a shorthand for `--output=type=docker` (default `false`)                                       | | ||||
| | `network`          | String      | Set the networking mode for the `RUN` instructions during build                                                                                                                   | | ||||
| | `no-cache`         | Bool        | Do not use cache when building the image (default `false`)                                                                                                                        | | ||||
| | `no-cache-filters` | List/CSV    | Do not cache specified stages                                                                                                                                                     | | ||||
| | `outputs`          | List        | List of [output destinations](https://docs.docker.com/engine/reference/commandline/buildx_build/#output) (format: `type=local,dest=path`)                                         | | ||||
| | `platforms`        | List/CSV    | List of [target platforms](https://docs.docker.com/engine/reference/commandline/buildx_build/#platform) for build                                                                 | | ||||
| | `provenance`       | Bool/String | Generate [provenance](https://docs.docker.com/build/attestations/slsa-provenance/) attestation for the build (shorthand for `--attest=type=provenance`)                           | | ||||
| | `pull`             | Bool        | Always attempt to pull all referenced images (default `false`)                                                                                                                    | | ||||
| | `push`             | Bool        | [Push](https://docs.docker.com/engine/reference/commandline/buildx_build/#push) is a shorthand for `--output=type=registry` (default `false`)                                     | | ||||
| | `sbom`             | Bool/String | Generate [SBOM](https://docs.docker.com/build/attestations/sbom/) attestation for the build (shorthand for `--attest=type=sbom`)                                                  | | ||||
| | `secrets`          | List        | List of [secrets](https://docs.docker.com/engine/reference/commandline/buildx_build/#secret) to expose to the build (e.g., `key=string`, `GIT_AUTH_TOKEN=mytoken`)                | | ||||
| | `secret-envs`      | List/CSV    | List of [secret env vars](https://docs.docker.com/engine/reference/commandline/buildx_build/#secret) to expose to the build (e.g., `key=envname`, `MY_SECRET=MY_ENV_VAR`)         | | ||||
| | `secret-files`     | List        | List of [secret files](https://docs.docker.com/engine/reference/commandline/buildx_build/#secret) to expose to the build (e.g., `key=filename`, `MY_SECRET=./secret.txt`)         | | ||||
| | `shm-size`         | String      | Size of [`/dev/shm`](https://docs.docker.com/engine/reference/commandline/buildx_build/#shm-size) (e.g., `2g`)                                                                    | | ||||
| | `ssh`              | List        | List of [SSH agent socket or keys](https://docs.docker.com/engine/reference/commandline/buildx_build/#ssh) to expose to the build                                                 | | ||||
| | `tags`             | List/CSV    | List of tags                                                                                                                                                                      | | ||||
| | `target`           | String      | Sets the target stage to build                                                                                                                                                    | | ||||
| | `ulimit`           | List        | [Ulimit](https://docs.docker.com/engine/reference/commandline/buildx_build/#ulimit) options (e.g., `nofile=1024:1024`)                                                            | | ||||
| | `github-token`     | String      | GitHub Token used to authenticate against a repository for [Git context](#git-context) (default `${{ github.token }}`)                                                            | | ||||
|  | ||||
| ### outputs | ||||
|  | ||||
| Following outputs are available | ||||
| The following outputs are available: | ||||
|  | ||||
| | Name              | Type    | Description                           | | ||||
| |-------------------|---------|---------------------------------------| | ||||
| | `digest`          | String  | Image content-addressable identifier also called a digest | | ||||
| | `metadata`        | JSON    | Build result metadata | | ||||
| | Name       | Type    | Description           | | ||||
| |------------|---------|-----------------------| | ||||
| | `imageid`  | String  | Image ID              | | ||||
| | `digest`   | String  | Image digest          | | ||||
| | `metadata` | JSON    | Build result metadata | | ||||
|  | ||||
| ## Troubleshooting | ||||
|  | ||||
| See [TROUBLESHOOTING.md](TROUBLESHOOTING.md) | ||||
|  | ||||
| ## Keep up-to-date with GitHub Dependabot | ||||
| ## Contributing | ||||
|  | ||||
| Since [Dependabot](https://docs.github.com/en/github/administering-a-repository/keeping-your-actions-up-to-date-with-github-dependabot) | ||||
| has [native GitHub Actions support](https://docs.github.com/en/github/administering-a-repository/configuration-options-for-dependency-updates#package-ecosystem), | ||||
| to enable it on your GitHub repo all you need to do is add the `.github/dependabot.yml` file: | ||||
|  | ||||
| ```yaml | ||||
| version: 2 | ||||
| updates: | ||||
|   # Maintain dependencies for GitHub Actions | ||||
|   - package-ecosystem: "github-actions" | ||||
|     directory: "/" | ||||
|     schedule: | ||||
|       interval: "daily" | ||||
| ``` | ||||
| Want to contribute? Awesome! You can find information about contributing to | ||||
| this project in the [CONTRIBUTING.md](/.github/CONTRIBUTING.md) | ||||
|   | ||||
| @@ -4,6 +4,7 @@ | ||||
|   * [BuildKit container logs](#buildkit-container-logs) | ||||
|   * [With containerd](#with-containerd) | ||||
| * [`repository name must be lowercase`](#repository-name-must-be-lowercase) | ||||
| * [Image not loaded](#image-not-loaded) | ||||
|  | ||||
| ## Cannot push to a registry | ||||
|  | ||||
| @@ -16,7 +17,7 @@ While pushing to a registry, you may encounter these kinds of issues: | ||||
| * `unexpected response: 401 Unauthorized` | ||||
|  | ||||
| These issues are not directly related to this action but are rather linked to | ||||
| [buildx](https://github.com/docker/buildx), [buildkit](https://github.com/moby/buildkit), | ||||
| [Buildx](https://github.com/docker/buildx), [BuildKit](https://github.com/moby/buildkit), | ||||
| [containerd](https://github.com/containerd/containerd) or the registry on which | ||||
| you're pushing your image. The quality of error message depends on the registry | ||||
| and are usually not very informative. | ||||
| @@ -29,7 +30,7 @@ action step and attach BuildKit container logs to your issue. | ||||
| ### With containerd | ||||
|  | ||||
| Next you can test pushing with [containerd action](https://github.com/crazy-max/ghaction-setup-containerd) | ||||
| using the following workflow. If it works then open an issue on [buildkit](https://github.com/moby/buildkit) | ||||
| using the following workflow. If it works then open an issue on [BuildKit](https://github.com/moby/buildkit) | ||||
| repository. | ||||
|  | ||||
| ```yaml | ||||
| @@ -44,21 +45,21 @@ jobs: | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|         uses: actions/checkout@v4 | ||||
|       - | ||||
|         name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v1 | ||||
|         uses: docker/setup-qemu-action@v3 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|         uses: docker/setup-buildx-action@v3 | ||||
|         with: | ||||
|           buildkitd-flags: --debug | ||||
|       - | ||||
|         name: Set up containerd | ||||
|         uses: crazy-max/ghaction-setup-containerd@v1 | ||||
|         uses: crazy-max/ghaction-setup-containerd@v2 | ||||
|       - | ||||
|         name: Build Docker image | ||||
|         uses: docker/build-push-action@v2 | ||||
|         uses: docker/build-push-action@v5 | ||||
|         with: | ||||
|           context: . | ||||
|           platforms: linux/amd64,linux/arm64 | ||||
| @@ -105,13 +106,13 @@ to generate sanitized tags: | ||||
| ```yaml | ||||
| - name: Docker meta | ||||
|   id: meta | ||||
|   uses: docker/metadata-action@v3 | ||||
|   uses: docker/metadata-action@v4 | ||||
|   with: | ||||
|     images: ghcr.io/${{ github.repository }} | ||||
|     tags: latest | ||||
|  | ||||
| - name: Build and push | ||||
|   uses: docker/build-push-action@v2 | ||||
|   uses: docker/build-push-action@v5 | ||||
|   with: | ||||
|     context: . | ||||
|     push: true | ||||
| @@ -122,16 +123,42 @@ Or a dedicated step to sanitize the slug: | ||||
|  | ||||
| ```yaml | ||||
| - name: Sanitize repo slug | ||||
|   uses: actions/github-script@v4 | ||||
|   uses: actions/github-script@v6 | ||||
|   id: repo_slug | ||||
|   with: | ||||
|     result-encoding: string | ||||
|     script: return 'ghcr.io/${{ github.repository }}'.toLowerCase() | ||||
|  | ||||
| - name: Build and push | ||||
|   uses: docker/build-push-action@v2 | ||||
|   uses: docker/build-push-action@v5 | ||||
|   with: | ||||
|     context: . | ||||
|     push: true | ||||
|     tags: ${{ steps.repo_slug.outputs.result }}:latest | ||||
| ``` | ||||
|  | ||||
| ## Image not loaded | ||||
|  | ||||
| Sometimes when your workflows are heavy consumers of disk storage, it can happen that build-push-action declares that the built image is loaded, but then not found in the following workflow steps. | ||||
|  | ||||
| - You can use the following solution as workaround, to free space on disk before building docker image using the following workflow step | ||||
|  | ||||
| ```yaml | ||||
|       # Free disk space | ||||
|       - name: Free Disk space | ||||
|         shell: bash | ||||
|         run: | | ||||
|           sudo rm -rf /usr/local/lib/android  # will release about 10 GB if you don't need Android | ||||
|           sudo rm -rf /usr/share/dotnet # will release about 20GB if you don't need .NET | ||||
| ``` | ||||
|  | ||||
| - Another workaround can be to call `docker/setup-buildx-action` with docker driver | ||||
|  | ||||
| ```yaml | ||||
| name: Set up Docker Buildx | ||||
| uses: docker/setup-buildx-action@v3 | ||||
| with: | ||||
|   driver: docker | ||||
| ``` | ||||
|  | ||||
| More details in the [related issue](https://github.com/docker/build-push-action/issues/321) | ||||
|   | ||||
							
								
								
									
										133
									
								
								UPGRADE.md
									
									
									
									
									
								
							
							
						
						
									
										133
									
								
								UPGRADE.md
									
									
									
									
									
								
							| @@ -1,133 +0,0 @@ | ||||
| # Upgrade notes | ||||
|  | ||||
| ## v1 to v2 | ||||
|  | ||||
| * Input `path` is now called `context` for consistency with other Docker build tools | ||||
| * `path` defaults to current git repository so checkout action is not required in a workflow | ||||
| * Rename `dockerfile` input to `file` for consistency with other Docker build tools | ||||
| * Rename `always_pull` input to `pull` for consistency with other Docker build tools | ||||
| * Add `builder` input to be able to choose a builder instance through our [setup-buildx action](https://github.com/docker/setup-buildx-action) | ||||
| * Add `platforms` input to support multi-platform builds | ||||
| * Add `allow` input | ||||
| * Add `load` input | ||||
| * Add `outputs` input | ||||
| * Add `cache-from` input (`cache_froms` removed) | ||||
| * Add `cache-to` input | ||||
| * Rename `build_args` input to `build-args` for consistency with other Docker build tools | ||||
| * Add `secrets` input | ||||
| * Review `tags` input | ||||
| * Remove `repository` input. See [Simple workflow](#simple-workflow) for migration | ||||
| * Remove `username`, `password` and `registry` inputs. Login support moved to [docker/login-action](https://github.com/docker/login-action) repo | ||||
| * Remove `tag_with_sha`, `tag_with_ref`, `add_git_labels` inputs. See [Tags with ref and Git labels](#tags-with-ref-and-git-labels) for migration | ||||
| * Handle Git context | ||||
| * Add `digest` output | ||||
|  | ||||
| ### Simple workflow | ||||
|  | ||||
| ```yaml | ||||
| # v1 | ||||
| steps: | ||||
|   - | ||||
|     name: Checkout | ||||
|     uses: actions/checkout@v2 | ||||
|   - | ||||
|     name: Build and push Docker images | ||||
|     uses: docker/build-push-action@v1 | ||||
|     with: | ||||
|       username: ${{ secrets.DOCKER_USERNAME }} | ||||
|       password: ${{ secrets.DOCKER_PASSWORD }} | ||||
|       repository: myorg/myrepository | ||||
|       always_pull: true | ||||
|       build_args: arg1=value1,arg2=value2 | ||||
|       cache_froms: myorg/myrepository:latest | ||||
|       tags: latest | ||||
| ``` | ||||
|  | ||||
| ```yaml | ||||
| # v2 | ||||
| steps: | ||||
|   - | ||||
|     name: Checkout | ||||
|     uses: actions/checkout@v2 | ||||
|   - | ||||
|     name: Set up Docker Buildx | ||||
|     uses: docker/setup-buildx-action@v1 | ||||
|   - | ||||
|     name: Login to DockerHub | ||||
|     uses: docker/login-action@v1 | ||||
|     with: | ||||
|       username: ${{ secrets.DOCKER_USERNAME }} | ||||
|       password: ${{ secrets.DOCKER_PASSWORD }} | ||||
|   - | ||||
|     name: Build and push | ||||
|     uses: docker/build-push-action@v2 | ||||
|     with: | ||||
|       context: . | ||||
|       pull: true | ||||
|       push: true | ||||
|       build-args: | | ||||
|         arg1=value1 | ||||
|         arg2=value2 | ||||
|       cache-from: type=registry,ref=myorg/myrepository:latest | ||||
|       cache-to: type=inline | ||||
|       tags: myorg/myrepository:latest | ||||
| ``` | ||||
|  | ||||
| ### Tags with ref and Git labels | ||||
|  | ||||
| ```yaml | ||||
| # v1 | ||||
| steps: | ||||
|   - | ||||
|     name: Checkout | ||||
|     uses: actions/checkout@v2 | ||||
|   - | ||||
|     name: Build and push Docker images | ||||
|     uses: docker/build-push-action@v1 | ||||
|     with: | ||||
|       username: ${{ secrets.DOCKER_USERNAME }} | ||||
|       password: ${{ secrets.DOCKER_PASSWORD }} | ||||
|       repository: myorg/myrepository | ||||
|       push: ${{ github.event_name != 'pull_request' }} | ||||
|       tag_with_ref: true | ||||
|       tag_with_sha: true | ||||
|       add_git_labels: true | ||||
| ``` | ||||
|  | ||||
| ```yaml | ||||
| # v2 | ||||
| steps: | ||||
|   - | ||||
|     name: Checkout | ||||
|     uses: actions/checkout@v2 | ||||
|   - | ||||
|     name: Docker meta | ||||
|     id: meta | ||||
|     uses: docker/metadata-action@v3 | ||||
|     with: | ||||
|       images: | | ||||
|         myorg/myrepository | ||||
|       tags: | | ||||
|         type=ref,event=branch | ||||
|         type=ref,event=pr | ||||
|         type=semver,pattern={{version}} | ||||
|         type=sha | ||||
|   - | ||||
|     name: Set up Docker Buildx | ||||
|     uses: docker/setup-buildx-action@v1 | ||||
|   - | ||||
|     name: Login to DockerHub | ||||
|     if: github.event_name != 'pull_request' | ||||
|     uses: docker/login-action@v1  | ||||
|     with: | ||||
|       username: ${{ secrets.DOCKER_USERNAME }} | ||||
|       password: ${{ secrets.DOCKER_PASSWORD }} | ||||
|   - | ||||
|     name: Build and push | ||||
|     uses: docker/build-push-action@v2 | ||||
|     with: | ||||
|       context: . | ||||
|       push: ${{ github.event_name != 'pull_request' }} | ||||
|       tags: ${{ steps.meta.outputs.tags }} | ||||
|       labels: ${{ steps.meta.outputs.labels }} | ||||
| ``` | ||||
							
								
								
									
										207
									
								
								__mocks__/@actions/github.ts
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										207
									
								
								__mocks__/@actions/github.ts
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,207 @@ | ||||
| import {jest} from '@jest/globals'; | ||||
|  | ||||
| export const context = { | ||||
|   repo: { | ||||
|     owner: 'docker', | ||||
|     repo: 'build-push-action' | ||||
|   }, | ||||
|   ref: 'refs/heads/master', | ||||
|   runId: 123456789, | ||||
|   payload: { | ||||
|     after: '860c1904a1ce19322e91ac35af1ab07466440c37', | ||||
|     base_ref: null, | ||||
|     before: '5f3331d7f7044c18ca9f12c77d961c4d7cf3276a', | ||||
|     commits: [ | ||||
|       { | ||||
|         author: { | ||||
|           email: 'crazy-max@users.noreply.github.com', | ||||
|           name: 'CrazyMax', | ||||
|           username: 'crazy-max' | ||||
|         }, | ||||
|         committer: { | ||||
|           email: 'crazy-max@users.noreply.github.com', | ||||
|           name: 'CrazyMax', | ||||
|           username: 'crazy-max' | ||||
|         }, | ||||
|         distinct: true, | ||||
|         id: '860c1904a1ce19322e91ac35af1ab07466440c37', | ||||
|         message: 'hello dev', | ||||
|         timestamp: '2022-04-19T11:27:24+02:00', | ||||
|         tree_id: 'd2c60af597e863787d2d27f569e30495b0b92820', | ||||
|         url: 'https://github.com/docker/test-docker-action/commit/860c1904a1ce19322e91ac35af1ab07466440c37' | ||||
|       } | ||||
|     ], | ||||
|     compare: 'https://github.com/docker/test-docker-action/compare/5f3331d7f704...860c1904a1ce', | ||||
|     created: false, | ||||
|     deleted: false, | ||||
|     forced: false, | ||||
|     head_commit: { | ||||
|       author: { | ||||
|         email: 'crazy-max@users.noreply.github.com', | ||||
|         name: 'CrazyMax', | ||||
|         username: 'crazy-max' | ||||
|       }, | ||||
|       committer: { | ||||
|         email: 'crazy-max@users.noreply.github.com', | ||||
|         name: 'CrazyMax', | ||||
|         username: 'crazy-max' | ||||
|       }, | ||||
|       distinct: true, | ||||
|       id: '860c1904a1ce19322e91ac35af1ab07466440c37', | ||||
|       message: 'hello dev', | ||||
|       timestamp: '2022-04-19T11:27:24+02:00', | ||||
|       tree_id: 'd2c60af597e863787d2d27f569e30495b0b92820', | ||||
|       url: 'https://github.com/docker/test-docker-action/commit/860c1904a1ce19322e91ac35af1ab07466440c37' | ||||
|     }, | ||||
|     organization: { | ||||
|       avatar_url: 'https://avatars.githubusercontent.com/u/5429470?v=4', | ||||
|       description: 'Docker helps developers bring their ideas to life by conquering the complexity of app development.', | ||||
|       events_url: 'https://api.github.com/orgs/docker/events', | ||||
|       hooks_url: 'https://api.github.com/orgs/docker/hooks', | ||||
|       id: 5429470, | ||||
|       issues_url: 'https://api.github.com/orgs/docker/issues', | ||||
|       login: 'docker', | ||||
|       members_url: 'https://api.github.com/orgs/docker/members{/member}', | ||||
|       node_id: 'MDEyOk9yZ2FuaXphdGlvbjU0Mjk0NzA=', | ||||
|       public_members_url: 'https://api.github.com/orgs/docker/public_members{/member}', | ||||
|       repos_url: 'https://api.github.com/orgs/docker/repos', | ||||
|       url: 'https://api.github.com/orgs/docker' | ||||
|     }, | ||||
|     pusher: { | ||||
|       email: 'github@crazymax.dev', | ||||
|       name: 'crazy-max' | ||||
|     }, | ||||
|     ref: 'refs/heads/dev', | ||||
|     repository: { | ||||
|       allow_forking: true, | ||||
|       archive_url: 'https://api.github.com/repos/docker/test-docker-action/{archive_format}{/ref}', | ||||
|       archived: false, | ||||
|       assignees_url: 'https://api.github.com/repos/docker/test-docker-action/assignees{/user}', | ||||
|       blobs_url: 'https://api.github.com/repos/docker/test-docker-action/git/blobs{/sha}', | ||||
|       branches_url: 'https://api.github.com/repos/docker/test-docker-action/branches{/branch}', | ||||
|       clone_url: 'https://github.com/docker/test-docker-action.git', | ||||
|       collaborators_url: 'https://api.github.com/repos/docker/test-docker-action/collaborators{/collaborator}', | ||||
|       comments_url: 'https://api.github.com/repos/docker/test-docker-action/comments{/number}', | ||||
|       commits_url: 'https://api.github.com/repos/docker/test-docker-action/commits{/sha}', | ||||
|       compare_url: 'https://api.github.com/repos/docker/test-docker-action/compare/{base}...{head}', | ||||
|       contents_url: 'https://api.github.com/repos/docker/test-docker-action/contents/{+path}', | ||||
|       contributors_url: 'https://api.github.com/repos/docker/test-docker-action/contributors', | ||||
|       created_at: 1596792180, | ||||
|       default_branch: 'master', | ||||
|       deployments_url: 'https://api.github.com/repos/docker/test-docker-action/deployments', | ||||
|       description: 'Test "Docker" Actions', | ||||
|       disabled: false, | ||||
|       downloads_url: 'https://api.github.com/repos/docker/test-docker-action/downloads', | ||||
|       events_url: 'https://api.github.com/repos/docker/test-docker-action/events', | ||||
|       fork: false, | ||||
|       forks: 1, | ||||
|       forks_count: 1, | ||||
|       forks_url: 'https://api.github.com/repos/docker/test-docker-action/forks', | ||||
|       full_name: 'docker/test-docker-action', | ||||
|       git_commits_url: 'https://api.github.com/repos/docker/test-docker-action/git/commits{/sha}', | ||||
|       git_refs_url: 'https://api.github.com/repos/docker/test-docker-action/git/refs{/sha}', | ||||
|       git_tags_url: 'https://api.github.com/repos/docker/test-docker-action/git/tags{/sha}', | ||||
|       git_url: 'git://github.com/docker/test-docker-action.git', | ||||
|       has_downloads: true, | ||||
|       has_issues: true, | ||||
|       has_pages: false, | ||||
|       has_projects: true, | ||||
|       has_wiki: true, | ||||
|       homepage: '', | ||||
|       hooks_url: 'https://api.github.com/repos/docker/test-docker-action/hooks', | ||||
|       html_url: 'https://github.com/docker/test-docker-action', | ||||
|       id: 285789493, | ||||
|       is_template: false, | ||||
|       issue_comment_url: 'https://api.github.com/repos/docker/test-docker-action/issues/comments{/number}', | ||||
|       issue_events_url: 'https://api.github.com/repos/docker/test-docker-action/issues/events{/number}', | ||||
|       issues_url: 'https://api.github.com/repos/docker/test-docker-action/issues{/number}', | ||||
|       keys_url: 'https://api.github.com/repos/docker/test-docker-action/keys{/key_id}', | ||||
|       labels_url: 'https://api.github.com/repos/docker/test-docker-action/labels{/name}', | ||||
|       language: 'JavaScript', | ||||
|       languages_url: 'https://api.github.com/repos/docker/test-docker-action/languages', | ||||
|       license: { | ||||
|         key: 'mit', | ||||
|         name: 'MIT License', | ||||
|         node_id: 'MDc6TGljZW5zZTEz', | ||||
|         spdx_id: 'MIT', | ||||
|         url: 'https://api.github.com/licenses/mit' | ||||
|       }, | ||||
|       master_branch: 'master', | ||||
|       merges_url: 'https://api.github.com/repos/docker/test-docker-action/merges', | ||||
|       milestones_url: 'https://api.github.com/repos/docker/test-docker-action/milestones{/number}', | ||||
|       mirror_url: null, | ||||
|       name: 'test-docker-action', | ||||
|       node_id: 'MDEwOlJlcG9zaXRvcnkyODU3ODk0OTM=', | ||||
|       notifications_url: 'https://api.github.com/repos/docker/test-docker-action/notifications{?since,all,participating}', | ||||
|       open_issues: 6, | ||||
|       open_issues_count: 6, | ||||
|       organization: 'docker', | ||||
|       owner: { | ||||
|         avatar_url: 'https://avatars.githubusercontent.com/u/5429470?v=4', | ||||
|         email: 'info@docker.com', | ||||
|         events_url: 'https://api.github.com/users/docker/events{/privacy}', | ||||
|         followers_url: 'https://api.github.com/users/docker/followers', | ||||
|         following_url: 'https://api.github.com/users/docker/following{/other_user}', | ||||
|         gists_url: 'https://api.github.com/users/docker/gists{/gist_id}', | ||||
|         gravatar_id: '', | ||||
|         html_url: 'https://github.com/docker', | ||||
|         id: 5429470, | ||||
|         login: 'docker', | ||||
|         name: 'docker', | ||||
|         node_id: 'MDEyOk9yZ2FuaXphdGlvbjU0Mjk0NzA=', | ||||
|         organizations_url: 'https://api.github.com/users/docker/orgs', | ||||
|         received_events_url: 'https://api.github.com/users/docker/received_events', | ||||
|         repos_url: 'https://api.github.com/users/docker/repos', | ||||
|         site_admin: false, | ||||
|         starred_url: 'https://api.github.com/users/docker/starred{/owner}{/repo}', | ||||
|         subscriptions_url: 'https://api.github.com/users/docker/subscriptions', | ||||
|         type: 'Organization', | ||||
|         url: 'https://api.github.com/users/docker' | ||||
|       }, | ||||
|       private: true, | ||||
|       pulls_url: 'https://api.github.com/repos/docker/test-docker-action/pulls{/number}', | ||||
|       pushed_at: 1650360446, | ||||
|       releases_url: 'https://api.github.com/repos/docker/test-docker-action/releases{/id}', | ||||
|       size: 796, | ||||
|       ssh_url: 'git@github.com:docker/test-docker-action.git', | ||||
|       stargazers: 0, | ||||
|       stargazers_count: 0, | ||||
|       stargazers_url: 'https://api.github.com/repos/docker/test-docker-action/stargazers', | ||||
|       statuses_url: 'https://api.github.com/repos/docker/test-docker-action/statuses/{sha}', | ||||
|       subscribers_url: 'https://api.github.com/repos/docker/test-docker-action/subscribers', | ||||
|       subscription_url: 'https://api.github.com/repos/docker/test-docker-action/subscription', | ||||
|       svn_url: 'https://github.com/docker/test-docker-action', | ||||
|       tags_url: 'https://api.github.com/repos/docker/test-docker-action/tags', | ||||
|       teams_url: 'https://api.github.com/repos/docker/test-docker-action/teams', | ||||
|       topics: [], | ||||
|       trees_url: 'https://api.github.com/repos/docker/test-docker-action/git/trees{/sha}', | ||||
|       updated_at: '2022-04-19T09:05:09Z', | ||||
|       url: 'https://github.com/docker/test-docker-action', | ||||
|       visibility: 'private', | ||||
|       watchers: 0, | ||||
|       watchers_count: 0 | ||||
|     }, | ||||
|     sender: { | ||||
|       avatar_url: 'https://avatars.githubusercontent.com/u/1951866?v=4', | ||||
|       events_url: 'https://api.github.com/users/crazy-max/events{/privacy}', | ||||
|       followers_url: 'https://api.github.com/users/crazy-max/followers', | ||||
|       following_url: 'https://api.github.com/users/crazy-max/following{/other_user}', | ||||
|       gists_url: 'https://api.github.com/users/crazy-max/gists{/gist_id}', | ||||
|       gravatar_id: '', | ||||
|       html_url: 'https://github.com/crazy-max', | ||||
|       id: 1951866, | ||||
|       login: 'crazy-max', | ||||
|       node_id: 'MDQ6VXNlcjE5NTE4NjY=', | ||||
|       organizations_url: 'https://api.github.com/users/crazy-max/orgs', | ||||
|       received_events_url: 'https://api.github.com/users/crazy-max/received_events', | ||||
|       repos_url: 'https://api.github.com/users/crazy-max/repos', | ||||
|       site_admin: false, | ||||
|       starred_url: 'https://api.github.com/users/crazy-max/starred{/owner}{/repo}', | ||||
|       subscriptions_url: 'https://api.github.com/users/crazy-max/subscriptions', | ||||
|       type: 'User', | ||||
|       url: 'https://api.github.com/users/crazy-max' | ||||
|     } | ||||
|   } | ||||
| }; | ||||
|  | ||||
| export const getOctokit = jest.fn(); | ||||
| @@ -1,184 +0,0 @@ | ||||
| import * as fs from 'fs'; | ||||
| import * as path from 'path'; | ||||
| import * as semver from 'semver'; | ||||
| import * as exec from '@actions/exec'; | ||||
|  | ||||
| import * as buildx from '../src/buildx'; | ||||
| import * as context from '../src/context'; | ||||
|  | ||||
| const tmpNameSync = path.join('/tmp/.docker-build-push-jest', '.tmpname-jest').split(path.sep).join(path.posix.sep); | ||||
| const digest = 'sha256:bfb45ab72e46908183546477a08f8867fc40cebadd00af54b071b097aed127a9'; | ||||
| const metadata = `{ | ||||
|   "containerimage.config.digest": "sha256:059b68a595b22564a1cbc167af369349fdc2ecc1f7bc092c2235cbf601a795fd", | ||||
|   "containerimage.digest": "sha256:b09b9482c72371486bb2c1d2c2a2633ed1d0b8389e12c8d52b9e052725c0c83c" | ||||
| }`; | ||||
|  | ||||
| jest.spyOn(context, 'tmpDir').mockImplementation((): string => { | ||||
|   const tmpDir = path.join('/tmp/.docker-build-push-jest').split(path.sep).join(path.posix.sep); | ||||
|   if (!fs.existsSync(tmpDir)) { | ||||
|     fs.mkdirSync(tmpDir, {recursive: true}); | ||||
|   } | ||||
|   return tmpDir; | ||||
| }); | ||||
|  | ||||
| jest.spyOn(context, 'tmpNameSync').mockImplementation((): string => { | ||||
|   return tmpNameSync; | ||||
| }); | ||||
|  | ||||
| describe('getImageID', () => { | ||||
|   it('matches', async () => { | ||||
|     const imageIDFile = await buildx.getImageIDFile(); | ||||
|     await fs.writeFileSync(imageIDFile, digest); | ||||
|     const imageID = await buildx.getImageID(); | ||||
|     expect(imageID).toEqual(digest); | ||||
|   }); | ||||
| }); | ||||
|  | ||||
| describe('getMetadata', () => { | ||||
|   it('matches', async () => { | ||||
|     const metadataFile = await buildx.getMetadataFile(); | ||||
|     await fs.writeFileSync(metadataFile, metadata); | ||||
|     const expected = await buildx.getMetadata(); | ||||
|     expect(expected).toEqual(metadata); | ||||
|   }); | ||||
| }); | ||||
|  | ||||
| describe('isLocalOrTarExporter', () => { | ||||
|   // prettier-ignore | ||||
|   test.each([ | ||||
|     [ | ||||
|       [ | ||||
|         'type=registry,ref=user/app', | ||||
|       ], | ||||
|       false | ||||
|     ], | ||||
|     [ | ||||
|       [ | ||||
|         'type=docker', | ||||
|       ], | ||||
|       false | ||||
|     ], | ||||
|     [ | ||||
|       [ | ||||
|         'type=local,dest=./release-out' | ||||
|       ], | ||||
|       true | ||||
|     ], | ||||
|     [ | ||||
|       [ | ||||
|         'type=tar,dest=/tmp/image.tar' | ||||
|       ], | ||||
|       true | ||||
|     ], | ||||
|     [ | ||||
|       [ | ||||
|         'type=docker', | ||||
|         'type=tar,dest=/tmp/image.tar' | ||||
|       ], | ||||
|       true | ||||
|     ], | ||||
|     [ | ||||
|       [ | ||||
|         '"type=tar","dest=/tmp/image.tar"' | ||||
|       ], | ||||
|       true | ||||
|     ], | ||||
|     [ | ||||
|       [ | ||||
|         '" type= local" , dest=./release-out' | ||||
|       ], | ||||
|       true | ||||
|     ], | ||||
|     [ | ||||
|       [ | ||||
|         '.' | ||||
|       ], | ||||
|       true | ||||
|     ], | ||||
|   ])( | ||||
|     'given %p returns %p', | ||||
|     async (outputs: Array<string>, expected: boolean) => { | ||||
|       expect(buildx.isLocalOrTarExporter(outputs)).toEqual(expected); | ||||
|     } | ||||
|   ); | ||||
| }); | ||||
|  | ||||
| describe('isAvailable', () => { | ||||
|   const execSpy: jest.SpyInstance = jest.spyOn(exec, 'getExecOutput'); | ||||
|   buildx.isAvailable(); | ||||
|  | ||||
|   expect(execSpy).toHaveBeenCalledWith(`docker`, ['buildx'], { | ||||
|     silent: true, | ||||
|     ignoreReturnCode: true | ||||
|   }); | ||||
| }); | ||||
|  | ||||
| describe('getVersion', () => { | ||||
|   async function isDaemonRunning() { | ||||
|     return await exec | ||||
|       .getExecOutput(`docker`, ['version', '--format', '{{.Server.Os}}'], { | ||||
|         ignoreReturnCode: true, | ||||
|         silent: true | ||||
|       }) | ||||
|       .then(res => { | ||||
|         return !res.stdout.includes(' ') && res.exitCode == 0; | ||||
|       }); | ||||
|   } | ||||
|   (isDaemonRunning() ? it : it.skip)( | ||||
|     'valid', | ||||
|     async () => { | ||||
|       const version = await buildx.getVersion(); | ||||
|       expect(semver.valid(version)).not.toBeNull(); | ||||
|     }, | ||||
|     100000 | ||||
|   ); | ||||
| }); | ||||
|  | ||||
| describe('parseVersion', () => { | ||||
|   test.each([ | ||||
|     ['github.com/docker/buildx 0.4.1+azure bda4882a65349ca359216b135896bddc1d92461c', '0.4.1'], | ||||
|     ['github.com/docker/buildx v0.4.1 bda4882a65349ca359216b135896bddc1d92461c', '0.4.1'], | ||||
|     ['github.com/docker/buildx v0.4.2 fb7b670b764764dc4716df3eba07ffdae4cc47b2', '0.4.2'], | ||||
|     ['github.com/docker/buildx f117971 f11797113e5a9b86bd976329c5dbb8a8bfdfadfa', 'f117971'] | ||||
|   ])('given %p', async (stdout, expected) => { | ||||
|     expect(buildx.parseVersion(stdout)).toEqual(expected); | ||||
|   }); | ||||
| }); | ||||
|  | ||||
| describe('satisfies', () => { | ||||
|   test.each([ | ||||
|     ['0.4.1', '>=0.3.2', true], | ||||
|     ['bda4882a65349ca359216b135896bddc1d92461c', '>0.1.0', false], | ||||
|     ['f117971', '>0.6.0', true] | ||||
|   ])('given %p', async (version, range, expected) => { | ||||
|     expect(buildx.satisfies(version, range)).toBe(expected); | ||||
|   }); | ||||
| }); | ||||
|  | ||||
| describe('getSecret', () => { | ||||
|   test.each([ | ||||
|     ['A_SECRET=abcdef0123456789', false, 'A_SECRET', 'abcdef0123456789', false], | ||||
|     ['GIT_AUTH_TOKEN=abcdefghijklmno=0123456789', false, 'GIT_AUTH_TOKEN', 'abcdefghijklmno=0123456789', false], | ||||
|     ['MY_KEY=c3RyaW5nLXdpdGgtZXF1YWxzCg==', false, 'MY_KEY', 'c3RyaW5nLXdpdGgtZXF1YWxzCg==', false], | ||||
|     ['aaaaaaaa', false, '', '', true], | ||||
|     ['aaaaaaaa=', false, '', '', true], | ||||
|     ['=bbbbbbb', false, '', '', true], | ||||
|     [`foo=${path.join(__dirname, 'fixtures', 'secret.txt').split(path.sep).join(path.posix.sep)}`, true, 'foo', 'bar', false], | ||||
|     [`notfound=secret`, true, '', '', true] | ||||
|   ])('given %p key and %p secret', async (kvp, file, exKey, exValue, invalid) => { | ||||
|     try { | ||||
|       let secret: string; | ||||
|       if (file) { | ||||
|         secret = await buildx.getSecretFile(kvp); | ||||
|       } else { | ||||
|         secret = await buildx.getSecretString(kvp); | ||||
|       } | ||||
|       expect(true).toBe(!invalid); | ||||
|       expect(secret).toEqual(`id=${exKey},src=${tmpNameSync}`); | ||||
|       const secretValue = await fs.readFileSync(tmpNameSync, 'utf-8'); | ||||
|       expect(secretValue).toEqual(exValue); | ||||
|     } catch (err) { | ||||
|       expect(true).toBe(invalid); | ||||
|     } | ||||
|   }); | ||||
| }); | ||||
| @@ -1,130 +1,70 @@ | ||||
| import {beforeEach, describe, expect, jest, test} from '@jest/globals'; | ||||
| import * as fs from 'fs'; | ||||
| import * as os from 'os'; | ||||
| import * as path from 'path'; | ||||
|  | ||||
| import {Builder} from '@docker/actions-toolkit/lib/buildx/builder'; | ||||
| import {Buildx} from '@docker/actions-toolkit/lib/buildx/buildx'; | ||||
| import {Build} from '@docker/actions-toolkit/lib/buildx/build'; | ||||
| import {Context} from '@docker/actions-toolkit/lib/context'; | ||||
| import {Docker} from '@docker/actions-toolkit/lib/docker/docker'; | ||||
| import {GitHub} from '@docker/actions-toolkit/lib/github'; | ||||
| import {Toolkit} from '@docker/actions-toolkit/lib/toolkit'; | ||||
|  | ||||
| import {BuilderInfo} from '@docker/actions-toolkit/lib/types/buildx/builder'; | ||||
| import {GitHubRepo} from '@docker/actions-toolkit/lib/types/github'; | ||||
|  | ||||
| import * as context from '../src/context'; | ||||
|  | ||||
| const pgp = `-----BEGIN PGP PRIVATE KEY BLOCK----- | ||||
| const tmpDir = path.join('/tmp', '.docker-build-push-jest'); | ||||
| const tmpName = path.join(tmpDir, '.tmpname-jest'); | ||||
|  | ||||
| lQdGBF6tzaABEACjFbX7PFEG6vDPN2MPyxYW7/3o/sonORj4HXUFjFxxJxktJ3x3 | ||||
| N1ayHPJ1lqIeoiY7jVbq0ZdEVGkd3YsKG9ZMdZkzGzY6PQPC/+M8OnzOiOPwUdWc | ||||
| +Tdhh115LvVz0MMKYiab6Sn9cgxj9On3LCQKpjvMDpPo9Ttf6v2GQIw8h2ACvdzQ | ||||
| 71LtIELS/I+dLbfZiwpUu2fhQT13EJkEnYMOYwM5jNUd66P9itUc7MrOWjkicrKP | ||||
| oF1dQaCM+tuKuxvD8WLdiwU5x60NoGkJHHUehKQXl2dVzjpqEqHKEBJt9tfJ9lpE | ||||
| YIisgwB8o3pes0fgCehjW2zI95/o9+ayJ6nl4g5+mSvWRXEu66h71nwM0Yuvquk8 | ||||
| 3me7qhYfDrDdCwcxS5BS1hwakTgUQLD99FZjbx1j8sq96I65O0GRdyU2PR8KIjwu | ||||
| JrkTH4ZlKxK3FQghUhFoA5GkiDb+eClmRMSni5qg+81T4XChmUkEprA3eWCHL+Ma | ||||
| xRNNxLS+r6hH9HG5JBxpV3iaTI9HHpnQKhEeaLXqsUTDZliN9hP7Ywo8bpUB8j2d | ||||
| oWYwDV4dPyMKr6Fb8RDCh2q5gJGbVp8w/NmmBTeL+IP2fFggJkRfyumv3Ul7x66L | ||||
| tBFQ4rYo4JUUrGweSTneG6REIgxH66hIrNl6Vo/D1ZyknTe1dMOu/BTkkQARAQAB | ||||
| /gcDAqra8KO+h3bfyu90vxTL1ro4x/x9il7VBcWlIR4cBP7Imgxv+T4hwPIu8P1x | ||||
| lOlxLNWegFOV0idoTy1o3VLLBev/F+IlspX4A+2XEIddR6nZnKFi0Lv2L4TKgE9E | ||||
| VJJTszmviDIRLMLN9dWzDfA8hj5tR5Inot92CHRF414AS22JHvlhbFSLQnjqsN+C | ||||
| n1cQpNOJhkxsSfZsxjnFa/70y/u8v0o8mzyLZmk9HpzRHGzoz8IfpLp8OTqBR9u6 | ||||
| zzoKLy16zZO55OKbj7h8uVZvDUq9l8iDICpqWMdZqBJIl56MBexYKgYxh3YO/8v2 | ||||
| oXli+8Xuaq5QLiCN3yT7IbKoYzplnFfaJwFiMh7R1iPLXaYAZ0qdRijlbtseTK1m | ||||
| oHNkwUbxVzjkh4LfE8UpmMwZn5ZjWni3230SoiXuKy0OHkGvwGvWWAL1mEuoYuUI | ||||
| mFMcH5MnixP8oQYZKDj2IR/yEeOpdU6B/tr3Tk1NidLf7pUMqG7Ff1NU6dAUeBpa | ||||
| 9xahITMjHvrhgMISY4IYZep5cEnVw8lQTpUJtW/ePMzrFhu3sA7oNdj9joW/VMfz | ||||
| H7MHwwavtICsYqoqV3lnjX4EC9dW6o8PTUg2u956dmtK7KAyUK/+w2aLNGT28ChN | ||||
| jhRYHvHzB9Kw5asqI/lTM49eqslBqYQMTTjdBphkYuSZQzNMf291j/ZmoLhD1A1a | ||||
| S8tUnNygKV4D1cJYgSXfzhFoU8ib/0SPo+KqQ+CzGS+wxXg6WNBA6wepTjpnVVx3 | ||||
| 4JADP8IJcDC3P0iwAreWjSy15F1cvemFFB0SLNUkyZGzsxtKzbM1+8khl68+eazC | ||||
| LzRj0rxfIF5znWjX1QFhKxCk6eF0IWDY0+b3DBkmChME9YDXJ3TthcqA7JgcX4JI | ||||
| M4/wdqhgerJYOmj+i2Q0M+Bu02icOJYMwTMMsDVl7XGHkaCuRgZ54eZAUH7JFwUm | ||||
| 1Ct3tcaqiTMmz0ngHVqBTauzgqKDvzwdVqdfg05H364nJMay/3omR6GayIb5CwSo | ||||
| xdNVwG3myPPradT9MP09mDr4ys2zcnQmCkvTVBF6cMZ1Eh6PQQ8CyQWv0zkaBnqj | ||||
| JrM1hRpgW4ZlRosSIjCaaJjolN5QDcXBM9TbW9ww+ZYstazN2bV1ZQ7BEjlHQPa1 | ||||
| BhzMsvqkbETHsIpDNF52gZKn3Q9eIX05BeadzpHUb5/XOheIHVIdhSaTlgl/qQW5 | ||||
| hQgPGSzSV6KhXEY7aevTdvOgq++WiELkjfz2f2lQFesTjFoQWEvxVDUmLxHtEhaN | ||||
| DOuh4H3mX5Opn3pLQmqWVhJTbFdx+g5qQd0NCW4mDaTFWTRLFLZQsSJxDSeg9xrY | ||||
| gmaii8NhMZRwquADW+6iU6KfraBhngi7HRz4TfqPr9ma/KUY464cqim1fnwXejyx | ||||
| jsb5YHR9R66i+F6P/ysF5w+QuVdDt1fnf9GLay0r6qxpA8ft2vGPcDs4806Huj+7 | ||||
| Aq5VeJaNkCuh3GR3xVnCFAz/7AtkO6xKuZm8B3q904UuMdSmkhWbaobIuF/B2B6S | ||||
| eawIXQHEOplK3ic26d8Ckf4gbjeORfELcMAEi5nGXpTThCdmxQApCLxAYYnTfQT1 | ||||
| xhlDwT9xPEabo98mIwJJsAU5VsTDYW+qfo4qIx8gYoSKc9Xu3yVh3n+9k43Gcm5V | ||||
| 9lvK1slijf+TzODZt/jsmkF8mPjXyP5KOI+xQp/m4PxW3pp57YrYj/Rnwga+8DKX | ||||
| jMsW7mLAAZ/e+PY6z/s3x1Krfk+Bb5Ph4mI0zjw5weQdtyEToRgveda0GEpvZSBU | ||||
| ZXN0ZXIgPGpvZUBmb28uYmFyPokCNgQQAQgAIAUCXq3NoAYLCQcIAwIEFQgKAgQW | ||||
| AgEAAhkBAhsDAh4BAAoJEH2FHrctc72gxtQP/AulaClIcn/kDt43mhYnyLglPfbo | ||||
| AqPlU26chXolBg0Wo0frFY3aIs5SrcWEf8aR4XLwCFGyi3vya0CUxjghN5tZBYqo | ||||
| vswbT00zP3ohxxlJFCRRR9bc7OZXCgTddtfVf6EKrUAzIkbWyAhaJnwJy/1UGpSw | ||||
| SEO/KpastrVKf3sv1wqOeFQ4DFyjaNda+xv3dVWS8db7KogqJiPFZXrQK3FKVIxS | ||||
| fxRSmKaYN7//d+xwVAEY++RrnL/o8B2kV6N68cCpQWJELyYnJzis9LBcWd/3wiYh | ||||
| efTyY+ePKUjcB+kEZnyJfLc7C2hll2e7UJ0fxv+k8vHReRhrNWmGRXsjNRxiw3U0 | ||||
| hfvxD/C8nyqAbeTHp4XDX78Tc3XCysAqIYboIL+RyewDMjjLj5vzUYAdUdtyNaD7 | ||||
| C6M2R6pN1GAt52CJmC/Z6F7W7GFGoYOdEkVdMQDsjCwScyEUNlGj9Zagw5M2EgSe | ||||
| 6gaHgMgTzsMzCc4W6WV5RcS55cfDNOXtxPsMJTt4FmXrjl11prBzpMfpU5a9zxDZ | ||||
| oi54ZZ8VPE6jsT4Lzw3sni3c83wm28ArM20AzZ1vh7fk3Sfd0u4Yaz7s9JlEm5+D | ||||
| 34tEyli28+QjCQc18EfQUiJqiYEJRxJXJ3esvMHfYi45pV/Eh5DgRW1305fUJV/6 | ||||
| +rGpg0NejsHoZdZPnQdGBF6tzaABEAC4mVXTkVk6Kdfa4r5zlzsoIrR27laUlMkb | ||||
| OBMt+aokqS+BEbmTnMg6xIAmcUT5uvGAc8S/WhrPoYfc15fTUyHIz8ZbDoAg0LO6 | ||||
| 0Io4VkAvNJNEnsSV9VdLBh/XYlc4K49JqKyWTL4/FJFAGbsmHY3b+QU90AS6FYRv | ||||
| KeBAoiyebrjx0vmzb8E8h3xthVLN+AfMlR1ickY62zvnpkbncSMY/skur1D2KfbF | ||||
| 3sFprty2pEtjFcyB5+18l2IyyHGOlEUw1PZdOAV4/Myh1EZRgYBPs80lYTJALCVF | ||||
| IdOakH33WJCImtNZB0AbDTABG+JtMjQGscOa0qzf1Y/7tlhgCrynBBdaIJTx95TD | ||||
| 21BUHcHOu5yTIS6Ulysxfkv611+BiOKHgdq7DVGP78VuzA7bCjlP1+vHqIt3cnIa | ||||
| t2tEyuZ/XF4uc3/i4g0uP9r7AmtET7Z6SKECWjpVv+UEgLx5Cv+ql+LSKYQMvU9a | ||||
| i3B1F9fatn3FSLVYrL4aRxu4TSw9POb0/lgDNmN3lGQOsjGCZPibkHjgPEVxKuiq | ||||
| 9Oi38/VTQ0ZKAmHwBTq1WTZIrPrCW0/YMQ6yIJZulwQ9Yx1cgzYzEfg04fPXlXMi | ||||
| vkvNpKbYIICzqj0/DVztz9wgpW6mnd0A2VX2dqbMM0fJUCHA6pj8AvXY4R+9Q4rj | ||||
| eWRK9ycInQARAQAB/gcDApjt7biRO0PEyrrAiUwDMsJL4/CVMu11qUWEPjKe2Grh | ||||
| ZTW3N+m3neKPRULu+LUtndUcEdVWUCoDzAJ7MwihZtV5vKST/5Scd2inonOaJqoA | ||||
| nS3wnEMN/Sc93HAZiZnFx3NKjQVNCwbuEs45mXkkcjLm2iadrTL8fL4acsu5IsvD | ||||
| LbDwVOPeNnHKl6Hr20e39fK0FuJEyH49JM6U3B1/8385sJB8+E24+hvSF81aMddh | ||||
| Ne4Bc3ZYiYaKxe1quPNKC0CQhAZiT7LsMfkInXr0hY1I+kISNXEJ1dPYOEWiv0Ze | ||||
| jD5Pupn34okKNEeBCx+dK8BmUCi6Jgs7McUA7hN0D/YUS++5fuR55UQq2j8Ui0tS | ||||
| P8GDr86upH3PgEL0STh9fYfJ7TesxurwonWjlmmT62Myl4Pr+RmpS6PXOnhtcADm | ||||
| eGLpzhTveFj4JBLMpyYHgBTqcs12zfprATOpsI/89kmQoGCZpG6+AbfSHqNNPdy2 | ||||
| eqUCBhOZlIIda1z/cexmU3f/gBqyflFf8fkvmlO4AvI8aMH3OpgHdWnzh+AB51xj | ||||
| kmdD/oWel9v7Dz4HoZUfwFaLZ0fE3P9voD8e+sCwqQwVqRY4L/BOYPD5noVOKgOj | ||||
| ABNKu5uKrobj6rFUi6DTUCjFGcmoF1Sc06xFNaagUNggRbmlC/dz22RWdDUYv5ra | ||||
| N6TxIDkGC0cK6ujyK0nes3DN0aHjgwWuMXDYkN3UckiebI4Cv/eF9jvUKOSiIcy1 | ||||
| RtxdazZS4dYg2LBMeJKVkPi5elsNyw2812nEY3du/nEkQYXfYgWOF27OR+g4Y9Yw | ||||
| 1BiqJ1TTjbQnd/khOCrrbzDH1mw00+1XVsT6wjObuYqqxPPS87UrqmMf6OdoYfPm | ||||
| zEOnNLBnsJ5VQM3A3pcT40RfdBrZRO8LjGhzKTreyq3C+jz0RLa5HNE8GgOhGyck | ||||
| ME4h+RhXlE8KGM+tTo6PA1NJSrEt+8kZzxjP4rIEn0aVthCkNXK12inuXtnHm0ao | ||||
| iLUlQOsfPFEnzl0TUPd7+z7j/wB+XiKU/AyEUuB0mvdxdKtqXvajahOyhLjzHQhz | ||||
| ZnNlgANGtiqcSoJmkJ8yAvhrtQX51fQLftxbArRW1RYk/5l+Gy3azR+gUC17M6JN | ||||
| jrUYxn0zlAxDGFH7gACHUONwVekcuEffHzgu2lk7MyO1Y+lPnwabqjG0eWWHuU00 | ||||
| hskJlXyhj7DeR12bwjYkyyjG62GvOH02g3OMvUgNGH+K321Dz539csCh/xwtg7Wt | ||||
| U3YAphU7htQ1dPDfk1IRs7DQo2L+ZTE57vmL5m0l6fTataEWBPUXkygfQFUJOM6Q | ||||
| yY76UEZww1OSDujNeY171NSTzXCVkUeAdAMXgjaHXWLK2QUQUoXbYX/Kr7Vvt9Fu | ||||
| Jh6eGjjp7dSjQ9+DW8CAB8vxd93gsQQGWYjmGu8khkEmx6OdZhmSbDbe915LQTb9 | ||||
| sPhk2s5/Szsvr5W2JJ2321JI6KXBJMZvPC5jEBWmRzOYkRd2vloft+CSMfXF+Zfd | ||||
| nYtc6R3dvb9vcjo+a9wFtfcoDsO0MaPSM+9GB25MamdatmGX6iLOy9Re1UABwUi/ | ||||
| VhTWNkP5uzqx0sDwHEIa2rYOwxpIZDwwjM3oOASCW1DDBQ0BI9KNjfIeL3ubx2mS | ||||
| 2x8hFU9qSK4umoDNbzOqGPSlkdbiPcNjF2ZcSN1qQZiYdwLL5dw6APNyBVjxTN1J | ||||
| gkCdJ/HwAY+r93Lbl5g8gz8d0vJEyfn//34sn9u+toSTw55GcG9Ks1kSKIeDNh0h | ||||
| MiPm3HmJAh8EGAEIAAkFAl6tzaACGwwACgkQfYUety1zvaBV9hAAgliX36pXJ59g | ||||
| 3I9/4R68e/fGg0FMM6D+01yCeiKApOYRrJ0cYKn7ITDYmHhlGGpBAie90UsqX12h | ||||
| hdLP7LoQx7sjTyzQt6JmpA8krIwi2ON7FKBkdYb8IYx4mE/5vKnYT4/SFnwTmnZY | ||||
| +m+NzK2U/qmhq8JyO8gozdAKJUcgz49IVv2Ij0tQ4qaPbyPwQxIDyKnT758nJhB1 | ||||
| jTqo+oWtER8q3okzIlqcArqn5rDaNJx+DRYL4E/IddyHQAiUWUka8usIUqeW5reu | ||||
| zoPUE2CCfOJSGArkqHQQqMx0WEzjQTwAPaHrQbera4SbiV/o4CLCV/u5p1Qnig+Q | ||||
| iUsakmlD299t//125LIQEa5qzd9hRC7u1uJS7VdW8eGIEcZ0/XT/sr+z23z0kpZH | ||||
| D3dXPX0BwM4IP9xu31CNg10x0rKwjbxy8VaskFEelpqpu+gpAnxqMd1evpeUHcOd | ||||
| r5RgPgkNFfba9Nbxf7uEX+HOmsOM+kdtSmdGIvsBZjVnW31nnoDMp49jG4OynjrH | ||||
| cRuoM9sxdr6UDqb22CZ3/e0YN4UaZM3YDWMVaP/QBVgvIFcdByqNWezpd9T4ZUII | ||||
| MZlaV1uRnHg6B/zTzhIdMM80AXz6Uv6kw4S+Lt7HlbrnMT7uKLuvzH7cle0hcIUa | ||||
| PejgXO0uIRolYQ3sz2tMGhx1MfBqH64= | ||||
| =WbwB | ||||
| -----END PGP PRIVATE KEY BLOCK-----`; | ||||
|  | ||||
| jest.spyOn(context, 'defaultContext').mockImplementation((): string => { | ||||
|   return 'https://github.com/docker/build-push-action.git#refs/heads/test-jest'; | ||||
| import repoFixture from './fixtures/github-repo.json'; | ||||
| jest.spyOn(GitHub.prototype, 'repoData').mockImplementation((): Promise<GitHubRepo> => { | ||||
|   return <Promise<GitHubRepo>>(repoFixture as unknown); | ||||
| }); | ||||
|  | ||||
| jest.spyOn(context, 'tmpDir').mockImplementation((): string => { | ||||
|   const tmpDir = path.join('/tmp/.docker-build-push-jest').split(path.sep).join(path.posix.sep); | ||||
| jest.spyOn(Context, 'tmpDir').mockImplementation((): string => { | ||||
|   if (!fs.existsSync(tmpDir)) { | ||||
|     fs.mkdirSync(tmpDir, {recursive: true}); | ||||
|   } | ||||
|   return tmpDir; | ||||
| }); | ||||
|  | ||||
| jest.spyOn(context, 'tmpNameSync').mockImplementation((): string => { | ||||
|   return path.join('/tmp/.docker-build-push-jest', '.tmpname-jest').split(path.sep).join(path.posix.sep); | ||||
| jest.spyOn(Context, 'tmpName').mockImplementation((): string => { | ||||
|   return tmpName; | ||||
| }); | ||||
|  | ||||
| jest.spyOn(Docker, 'isAvailable').mockImplementation(async (): Promise<boolean> => { | ||||
|   return true; | ||||
| }); | ||||
|  | ||||
| const metadataJson = path.join(tmpDir, 'metadata.json'); | ||||
| jest.spyOn(Build.prototype, 'getMetadataFilePath').mockImplementation((): string => { | ||||
|   return metadataJson; | ||||
| }); | ||||
|  | ||||
| const imageIDFilePath = path.join(tmpDir, 'iidfile.txt'); | ||||
| jest.spyOn(Build.prototype, 'getImageIDFilePath').mockImplementation((): string => { | ||||
|   return imageIDFilePath; | ||||
| }); | ||||
|  | ||||
| jest.spyOn(Builder.prototype, 'inspect').mockImplementation(async (): Promise<BuilderInfo> => { | ||||
|   return { | ||||
|     name: 'builder2', | ||||
|     driver: 'docker-container', | ||||
|     lastActivity: new Date('2023-01-16 09:45:23 +0000 UTC'), | ||||
|     nodes: [ | ||||
|       { | ||||
|         buildkit: 'v0.11.0', | ||||
|         'buildkitd-flags': '--debug --allow-insecure-entitlement security.insecure --allow-insecure-entitlement network.host', | ||||
|         'driver-opts': ['BUILDKIT_STEP_LOG_MAX_SIZE=10485760', 'BUILDKIT_STEP_LOG_MAX_SPEED=10485760', 'JAEGER_TRACE=localhost:6831', 'image=moby/buildkit:latest', 'network=host'], | ||||
|         endpoint: 'unix:///var/run/docker.sock', | ||||
|         name: 'builder20', | ||||
|         platforms: 'linux/amd64,linux/amd64/v2,linux/amd64/v3,linux/arm64,linux/riscv64,linux/ppc64le,linux/s390x,linux/386,linux/mips64le,linux/mips64,linux/arm/v7,linux/arm/v6', | ||||
|         status: 'running' | ||||
|       } | ||||
|     ] | ||||
|   }; | ||||
| }); | ||||
|  | ||||
| describe('getArgs', () => { | ||||
| @@ -150,9 +90,8 @@ describe('getArgs', () => { | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--iidfile', '/tmp/.docker-build-push-jest/iidfile', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
| @@ -160,19 +99,23 @@ describe('getArgs', () => { | ||||
|       1, | ||||
|       '0.4.2', | ||||
|       new Map<string, string>([ | ||||
|         ['build-args', 'MY_ARG=val1,val2,val3\nARG=val'], | ||||
|         ['build-args', `MY_ARG=val1,val2,val3 | ||||
| ARG=val | ||||
| "MULTILINE=aaaa | ||||
| bbbb | ||||
| ccc"`], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--build-arg', 'MY_ARG=val1,val2,val3', | ||||
|         '--build-arg', 'ARG=val', | ||||
|         '--iidfile', '/tmp/.docker-build-push-jest/iidfile', | ||||
|         'https://github.com/docker/build-push-action.git#refs/heads/test-jest' | ||||
|         '--build-arg', `MULTILINE=aaaa\nbbbb\nccc`, | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         'https://github.com/docker/build-push-action.git#refs/heads/master' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
| @@ -186,12 +129,11 @@ describe('getArgs', () => { | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--iidfile', '/tmp/.docker-build-push-jest/iidfile', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--tag', 'name/app:7.4', | ||||
|         '--tag', 'name/app:latest', | ||||
|         'https://github.com/docker/build-push-action.git#refs/heads/test-jest' | ||||
|         'https://github.com/docker/build-push-action.git#refs/heads/master' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
| @@ -207,7 +149,6 @@ describe('getArgs', () => { | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--label', 'org.opencontainers.image.title=buildkit', | ||||
|         '--label', 'org.opencontainers.image.description=concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit', | ||||
| @@ -227,7 +168,6 @@ describe('getArgs', () => { | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--platform', 'linux/amd64,linux/arm64', | ||||
|         '.' | ||||
| @@ -244,9 +184,8 @@ describe('getArgs', () => { | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--iidfile', '/tmp/.docker-build-push-jest/iidfile', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
| @@ -262,10 +201,9 @@ describe('getArgs', () => { | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--iidfile', '/tmp/.docker-build-push-jest/iidfile', | ||||
|         '--secret', 'id=GIT_AUTH_TOKEN,src=/tmp/.docker-build-push-jest/.tmpname-jest', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--secret', `id=GIT_AUTH_TOKEN,src=${tmpName}`, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
| @@ -281,11 +219,10 @@ describe('getArgs', () => { | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--output', '.', | ||||
|         '--secret', 'id=GIT_AUTH_TOKEN,src=/tmp/.docker-build-push-jest/.tmpname-jest', | ||||
|         'https://github.com/docker/build-push-action.git#refs/heads/test-jest' | ||||
|         '--secret', `id=GIT_AUTH_TOKEN,src=${tmpName}`, | ||||
|         'https://github.com/docker/build-push-action.git#refs/heads/master' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
| @@ -304,12 +241,11 @@ describe('getArgs', () => { | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--file', './test/Dockerfile', | ||||
|         '--iidfile', '/tmp/.docker-build-push-jest/iidfile', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--platform', 'linux/amd64,linux/arm64', | ||||
|         '--secret', 'id=GIT_AUTH_TOKEN,src=/tmp/.docker-build-push-jest/.tmpname-jest', | ||||
|         '--secret', `id=GIT_AUTH_TOKEN,src=${tmpName}`, | ||||
|         '--builder', 'builder-git-context-2', | ||||
|         '--push', | ||||
|         'https://github.com/docker/build-push-action.git#refs/heads/master' | ||||
| @@ -339,15 +275,14 @@ ccc"`], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--file', './test/Dockerfile', | ||||
|         '--iidfile', '/tmp/.docker-build-push-jest/iidfile', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--platform', 'linux/amd64,linux/arm64', | ||||
|         '--secret', 'id=GIT_AUTH_TOKEN,src=/tmp/.docker-build-push-jest/.tmpname-jest', | ||||
|         '--secret', 'id=MYSECRET,src=/tmp/.docker-build-push-jest/.tmpname-jest', | ||||
|         '--secret', 'id=FOO,src=/tmp/.docker-build-push-jest/.tmpname-jest', | ||||
|         '--secret', 'id=EMPTYLINE,src=/tmp/.docker-build-push-jest/.tmpname-jest', | ||||
|         '--secret', `id=GIT_AUTH_TOKEN,src=${tmpName}`, | ||||
|         '--secret', `id=MYSECRET,src=${tmpName}`, | ||||
|         '--secret', `id=FOO,src=${tmpName}`, | ||||
|         '--secret', `id=EMPTYLINE,src=${tmpName}`, | ||||
|         '--builder', 'builder-git-context-2', | ||||
|         '--push', | ||||
|         'https://github.com/docker/build-push-action.git#refs/heads/master' | ||||
| @@ -377,15 +312,14 @@ ccc`], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--file', './test/Dockerfile', | ||||
|         '--iidfile', '/tmp/.docker-build-push-jest/iidfile', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--platform', 'linux/amd64,linux/arm64', | ||||
|         '--secret', 'id=GIT_AUTH_TOKEN,src=/tmp/.docker-build-push-jest/.tmpname-jest', | ||||
|         '--secret', 'id=MYSECRET,src=/tmp/.docker-build-push-jest/.tmpname-jest', | ||||
|         '--secret', 'id=FOO,src=/tmp/.docker-build-push-jest/.tmpname-jest', | ||||
|         '--secret', 'id=EMPTYLINE,src=/tmp/.docker-build-push-jest/.tmpname-jest', | ||||
|         '--secret', `id=GIT_AUTH_TOKEN,src=${tmpName}`, | ||||
|         '--secret', `id=MYSECRET,src=${tmpName}`, | ||||
|         '--secret', `id=FOO,src=${tmpName}`, | ||||
|         '--secret', `id=EMPTYLINE,src=${tmpName}`, | ||||
|         '--builder', 'builder-git-context-2', | ||||
|         '--push', | ||||
|         'https://github.com/docker/build-push-action.git#refs/heads/master' | ||||
| @@ -397,7 +331,7 @@ ccc`], | ||||
|       new Map<string, string>([ | ||||
|         ['context', 'https://github.com/docker/build-push-action.git#refs/heads/master'], | ||||
|         ['tag', 'localhost:5000/name/app:latest'], | ||||
|         ['secret-files', `MY_SECRET=${path.join(__dirname, 'fixtures', 'secret.txt').split(path.sep).join(path.posix.sep)}`], | ||||
|         ['secret-files', `MY_SECRET=${path.join(__dirname, 'fixtures', 'secret.txt')}`], | ||||
|         ['file', './test/Dockerfile'], | ||||
|         ['builder', 'builder-git-context-2'], | ||||
|         ['network', 'host'], | ||||
| @@ -407,11 +341,10 @@ ccc`], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--file', './test/Dockerfile', | ||||
|         '--iidfile', '/tmp/.docker-build-push-jest/iidfile', | ||||
|         '--secret', 'id=MY_SECRET,src=/tmp/.docker-build-push-jest/.tmpname-jest', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--secret', `id=MY_SECRET,src=${tmpName}`, | ||||
|         '--builder', 'builder-git-context-2', | ||||
|         '--network', 'host', | ||||
|         '--push', | ||||
| @@ -431,7 +364,6 @@ ccc`], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--label', 'org.opencontainers.image.title=filter_results_top_n', | ||||
|         '--label', 'org.opencontainers.image.description=Reference implementation of operation "filter results (top-n)"', | ||||
| @@ -454,13 +386,12 @@ ccc`], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--add-host', 'docker:10.180.0.1', | ||||
|         '--add-host', 'foo:10.0.0.1', | ||||
|         '--file', './test/Dockerfile', | ||||
|         '--iidfile', '/tmp/.docker-build-push-jest/iidfile', | ||||
|         '--metadata-file', '/tmp/.docker-build-push-jest/metadata-file', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--metadata-file', metadataJson, | ||||
|         '--network', 'host', | ||||
|         '--push', | ||||
|         '.' | ||||
| @@ -483,17 +414,16 @@ nproc=3`], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--add-host', 'docker:10.180.0.1', | ||||
|         '--add-host', 'foo:10.0.0.1', | ||||
|         '--cgroup-parent', 'foo', | ||||
|         '--file', './test/Dockerfile', | ||||
|         '--iidfile', '/tmp/.docker-build-push-jest/iidfile', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--shm-size', '2g', | ||||
|         '--ulimit', 'nofile=1024:1024', | ||||
|         '--ulimit', 'nproc=3', | ||||
|         '--metadata-file', '/tmp/.docker-build-push-jest/metadata-file', | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
| @@ -508,205 +438,384 @@ nproc=3`], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'buildx', | ||||
|         'build', | ||||
|         '--iidfile', '/tmp/.docker-build-push-jest/iidfile', | ||||
|         '--metadata-file', '/tmp/.docker-build-push-jest/metadata-file', | ||||
|         'https://github.com/docker/build-push-action.git#refs/heads/test-jest:docker' | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--metadata-file', metadataJson, | ||||
|         'https://github.com/docker/build-push-action.git#refs/heads/master:docker' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       16, | ||||
|       '0.8.2', | ||||
|       new Map<string, string>([ | ||||
|         ['github-token', 'abcdefghijklmno0123456789'], | ||||
|         ['context', '{{defaultContext}}:subdir'], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--secret', `id=GIT_AUTH_TOKEN,src=${tmpName}`, | ||||
|         '--metadata-file', metadataJson, | ||||
|         'https://github.com/docker/build-push-action.git#refs/heads/master:subdir' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       17, | ||||
|       '0.8.2', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|         ['provenance', 'true'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       18, | ||||
|       '0.10.0', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--attest', `type=provenance,mode=min,inline-only=true,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789`, | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       19, | ||||
|       '0.10.0', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|         ['provenance', 'true'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--attest', `type=provenance,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789`, | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       20, | ||||
|       '0.10.0', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|         ['provenance', 'mode=max'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--attest', `type=provenance,mode=max,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789`, | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       21, | ||||
|       '0.10.0', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|         ['provenance', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--attest', 'type=provenance,disabled=true', | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       22, | ||||
|       '0.10.0', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|         ['provenance', 'builder-id=foo'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--attest', 'type=provenance,builder-id=foo', | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       23, | ||||
|       '0.10.0', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|         ['outputs', 'type=docker'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         "--output", 'type=docker', | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       24, | ||||
|       '0.10.0', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['load', 'true'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--load', | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       25, | ||||
|       '0.10.0', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['build-args', `FOO=bar#baz`], | ||||
|         ['load', 'true'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--build-arg', 'FOO=bar#baz', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--load', | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       26, | ||||
|       '0.10.0', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['load', 'true'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|         ['secret-envs', `MY_SECRET=MY_SECRET_ENV | ||||
| ANOTHER_SECRET=ANOTHER_SECRET_ENV`] | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--secret', 'id=MY_SECRET,env=MY_SECRET_ENV', | ||||
|         '--secret', 'id=ANOTHER_SECRET,env=ANOTHER_SECRET_ENV', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--load', | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       27, | ||||
|       '0.10.0', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['load', 'true'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|         ['secret-envs', 'MY_SECRET=MY_SECRET_ENV,ANOTHER_SECRET=ANOTHER_SECRET_ENV'] | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--secret', 'id=MY_SECRET,env=MY_SECRET_ENV', | ||||
|         '--secret', 'id=ANOTHER_SECRET,env=ANOTHER_SECRET_ENV', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--load', | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       28, | ||||
|       '0.11.0', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['annotations', 'example1=www\nindex:example2=xxx\nmanifest:example3=yyy\nmanifest-descriptor[linux/amd64]:example4=zzz'], | ||||
|         ['outputs', 'type=local,dest=./release-out'], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--output', 'type=local,dest=./release-out', | ||||
|         '--attest', `type=provenance,mode=min,inline-only=true,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789`, | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       29, | ||||
|       '0.12.0', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['annotations', 'example1=www\nindex:example2=xxx\nmanifest:example3=yyy\nmanifest-descriptor[linux/amd64]:example4=zzz'], | ||||
|         ['outputs', 'type=local,dest=./release-out'], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--annotation', 'example1=www', | ||||
|         '--annotation', 'index:example2=xxx', | ||||
|         '--annotation', 'manifest:example3=yyy', | ||||
|         '--annotation', 'manifest-descriptor[linux/amd64]:example4=zzz', | ||||
|         '--output', 'type=local,dest=./release-out', | ||||
|         '--attest', `type=provenance,mode=min,inline-only=true,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789`, | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       30, | ||||
|       '0.12.0', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['outputs', `type=image,"name=localhost:5000/name/app:latest,localhost:5000/name/app:foo",push-by-digest=true,name-canonical=true,push=true`], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         "--output", `type=image,"name=localhost:5000/name/app:latest,localhost:5000/name/app:foo",push-by-digest=true,name-canonical=true,push=true`, | ||||
|         '--attest', `type=provenance,mode=min,inline-only=true,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789`, | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       31, | ||||
|       '0.13.1', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|         ['provenance', 'mode=max'], | ||||
|         ['sbom', 'true'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--attest', `type=provenance,mode=max,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789`, | ||||
|         '--attest', `type=sbom,disabled=false`, | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       32, | ||||
|       '0.13.1', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|         ['attests', 'type=provenance,mode=min'], | ||||
|         ['provenance', 'mode=max'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--attest', `type=provenance,mode=max,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789`, | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|     [ | ||||
|       33, | ||||
|       '0.13.1', | ||||
|       new Map<string, string>([ | ||||
|         ['context', '.'], | ||||
|         ['load', 'false'], | ||||
|         ['no-cache', 'false'], | ||||
|         ['push', 'false'], | ||||
|         ['pull', 'false'], | ||||
|         ['attests', 'type=provenance,mode=min'], | ||||
|       ]), | ||||
|       [ | ||||
|         'build', | ||||
|         '--iidfile', imageIDFilePath, | ||||
|         '--attest', `type=provenance,mode=min,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789`, | ||||
|         '--metadata-file', metadataJson, | ||||
|         '.' | ||||
|       ] | ||||
|     ], | ||||
|   ])( | ||||
|     '[%d] given %p with %p as inputs, returns %p', | ||||
|     async (num: number, buildxVersion: string, inputs: Map<string, any>, expected: Array<string>) => { | ||||
|       await inputs.forEach((value: string, name: string) => { | ||||
|     async (num: number, buildxVersion: string, inputs: Map<string, string>, expected: Array<string>) => { | ||||
|       inputs.forEach((value: string, name: string) => { | ||||
|         setInput(name, value); | ||||
|       }); | ||||
|       const defContext = context.defaultContext(); | ||||
|       const inp = await context.getInputs(defContext); | ||||
|       const res = await context.getArgs(inp, defContext, buildxVersion); | ||||
|       const toolkit = new Toolkit(); | ||||
|       jest.spyOn(Buildx.prototype, 'version').mockImplementation(async (): Promise<string> => { | ||||
|         return buildxVersion; | ||||
|       }); | ||||
|       const inp = await context.getInputs(); | ||||
|       const res = await context.getArgs(inp, toolkit); | ||||
|       expect(res).toEqual(expected); | ||||
|     } | ||||
|   ); | ||||
| }); | ||||
|  | ||||
| describe('getInputList', () => { | ||||
|   it('single line correctly', async () => { | ||||
|     await setInput('foo', 'bar'); | ||||
|     const res = await context.getInputList('foo'); | ||||
|     expect(res).toEqual(['bar']); | ||||
|   }); | ||||
|  | ||||
|   it('multiline correctly', async () => { | ||||
|     setInput('foo', 'bar\nbaz'); | ||||
|     const res = await context.getInputList('foo'); | ||||
|     expect(res).toEqual(['bar', 'baz']); | ||||
|   }); | ||||
|  | ||||
|   it('empty lines correctly', async () => { | ||||
|     setInput('foo', 'bar\n\nbaz'); | ||||
|     const res = await context.getInputList('foo'); | ||||
|     expect(res).toEqual(['bar', 'baz']); | ||||
|   }); | ||||
|  | ||||
|   it('comma correctly', async () => { | ||||
|     setInput('foo', 'bar,baz'); | ||||
|     const res = await context.getInputList('foo'); | ||||
|     expect(res).toEqual(['bar', 'baz']); | ||||
|   }); | ||||
|  | ||||
|   it('empty result correctly', async () => { | ||||
|     setInput('foo', 'bar,baz,'); | ||||
|     const res = await context.getInputList('foo'); | ||||
|     expect(res).toEqual(['bar', 'baz']); | ||||
|   }); | ||||
|  | ||||
|   it('different new lines correctly', async () => { | ||||
|     setInput('foo', 'bar\r\nbaz'); | ||||
|     const res = await context.getInputList('foo'); | ||||
|     expect(res).toEqual(['bar', 'baz']); | ||||
|   }); | ||||
|  | ||||
|   it('different new lines and comma correctly', async () => { | ||||
|     setInput('foo', 'bar\r\nbaz,bat'); | ||||
|     const res = await context.getInputList('foo'); | ||||
|     expect(res).toEqual(['bar', 'baz', 'bat']); | ||||
|   }); | ||||
|  | ||||
|   it('multiline and ignoring comma correctly', async () => { | ||||
|     setInput('cache-from', 'user/app:cache\ntype=local,src=path/to/dir'); | ||||
|     const res = await context.getInputList('cache-from', true); | ||||
|     expect(res).toEqual(['user/app:cache', 'type=local,src=path/to/dir']); | ||||
|   }); | ||||
|  | ||||
|   it('different new lines and ignoring comma correctly', async () => { | ||||
|     setInput('cache-from', 'user/app:cache\r\ntype=local,src=path/to/dir'); | ||||
|     const res = await context.getInputList('cache-from', true); | ||||
|     expect(res).toEqual(['user/app:cache', 'type=local,src=path/to/dir']); | ||||
|   }); | ||||
|  | ||||
|   it('multiline values', async () => { | ||||
|     setInput( | ||||
|       'secrets', | ||||
|       `GIT_AUTH_TOKEN=abcdefgh,ijklmno=0123456789 | ||||
| "MYSECRET=aaaaaaaa | ||||
| bbbbbbb | ||||
| ccccccccc" | ||||
| FOO=bar` | ||||
|     ); | ||||
|     const res = await context.getInputList('secrets', true); | ||||
|     expect(res).toEqual([ | ||||
|       'GIT_AUTH_TOKEN=abcdefgh,ijklmno=0123456789', | ||||
|       `MYSECRET=aaaaaaaa | ||||
| bbbbbbb | ||||
| ccccccccc`, | ||||
|       'FOO=bar' | ||||
|     ]); | ||||
|   }); | ||||
|  | ||||
|   it('multiline values with empty lines', async () => { | ||||
|     setInput( | ||||
|       'secrets', | ||||
|       `GIT_AUTH_TOKEN=abcdefgh,ijklmno=0123456789 | ||||
| "MYSECRET=aaaaaaaa | ||||
| bbbbbbb | ||||
| ccccccccc" | ||||
| FOO=bar | ||||
| "EMPTYLINE=aaaa | ||||
|  | ||||
| bbbb | ||||
| ccc"` | ||||
|     ); | ||||
|     const res = await context.getInputList('secrets', true); | ||||
|     expect(res).toEqual([ | ||||
|       'GIT_AUTH_TOKEN=abcdefgh,ijklmno=0123456789', | ||||
|       `MYSECRET=aaaaaaaa | ||||
| bbbbbbb | ||||
| ccccccccc`, | ||||
|       'FOO=bar', | ||||
|       `EMPTYLINE=aaaa | ||||
|  | ||||
| bbbb | ||||
| ccc` | ||||
|     ]); | ||||
|   }); | ||||
|  | ||||
|   it('multiline values without quotes', async () => { | ||||
|     setInput( | ||||
|       'secrets', | ||||
|       `GIT_AUTH_TOKEN=abcdefgh,ijklmno=0123456789 | ||||
| MYSECRET=aaaaaaaa | ||||
| bbbbbbb | ||||
| ccccccccc | ||||
| FOO=bar` | ||||
|     ); | ||||
|     const res = await context.getInputList('secrets', true); | ||||
|     expect(res).toEqual(['GIT_AUTH_TOKEN=abcdefgh,ijklmno=0123456789', 'MYSECRET=aaaaaaaa', 'bbbbbbb', 'ccccccccc', 'FOO=bar']); | ||||
|   }); | ||||
|  | ||||
|   it('large multiline values', async () => { | ||||
|     setInput( | ||||
|       'secrets', | ||||
|       `"GPG_KEY=${pgp}" | ||||
| FOO=bar` | ||||
|     ); | ||||
|     const res = await context.getInputList('secrets', true); | ||||
|     expect(res).toEqual([`GPG_KEY=${pgp}`, 'FOO=bar']); | ||||
|   }); | ||||
|  | ||||
|   it('multiline values escape quotes', async () => { | ||||
|     setInput( | ||||
|       'secrets', | ||||
|       `GIT_AUTH_TOKEN=abcdefgh,ijklmno=0123456789 | ||||
| "MYSECRET=aaaaaaaa | ||||
| bbbb""bbb | ||||
| ccccccccc" | ||||
| FOO=bar` | ||||
|     ); | ||||
|     const res = await context.getInputList('secrets', true); | ||||
|     expect(res).toEqual([ | ||||
|       'GIT_AUTH_TOKEN=abcdefgh,ijklmno=0123456789', | ||||
|       `MYSECRET=aaaaaaaa | ||||
| bbbb\"bbb | ||||
| ccccccccc`, | ||||
|       'FOO=bar' | ||||
|     ]); | ||||
|   }); | ||||
| }); | ||||
|  | ||||
| describe('asyncForEach', () => { | ||||
|   it('executes async tasks sequentially', async () => { | ||||
|     const testValues = [1, 2, 3, 4, 5]; | ||||
|     const results: number[] = []; | ||||
|  | ||||
|     await context.asyncForEach(testValues, async value => { | ||||
|       results.push(value); | ||||
|     }); | ||||
|  | ||||
|     expect(results).toEqual(testValues); | ||||
|   }); | ||||
| }); | ||||
|  | ||||
| describe('setOutput', () => { | ||||
|   beforeEach(() => { | ||||
|     process.stdout.write = jest.fn(); | ||||
|   }); | ||||
|  | ||||
|   it('setOutput produces the correct command', () => { | ||||
|     context.setOutput('some output', 'some value'); | ||||
|     assertWriteCalls([`::set-output name=some output::some value${os.EOL}`]); | ||||
|   }); | ||||
|  | ||||
|   it('setOutput handles bools', () => { | ||||
|     context.setOutput('some output', false); | ||||
|     assertWriteCalls([`::set-output name=some output::false${os.EOL}`]); | ||||
|   }); | ||||
|  | ||||
|   it('setOutput handles numbers', () => { | ||||
|     context.setOutput('some output', 1.01); | ||||
|     assertWriteCalls([`::set-output name=some output::1.01${os.EOL}`]); | ||||
|   }); | ||||
| }); | ||||
|  | ||||
| // See: https://github.com/actions/toolkit/blob/a1b068ec31a042ff1e10a522d8fdf0b8869d53ca/packages/core/src/core.ts#L89 | ||||
| function getInputName(name: string): string { | ||||
|   return `INPUT_${name.replace(/ /g, '_').toUpperCase()}`; | ||||
| @@ -715,11 +824,3 @@ function getInputName(name: string): string { | ||||
| function setInput(name: string, value: string): void { | ||||
|   process.env[getInputName(name)] = value; | ||||
| } | ||||
|  | ||||
| // Assert that process.stdout.write calls called only with the given arguments. | ||||
| function assertWriteCalls(calls: string[]): void { | ||||
|   expect(process.stdout.write).toHaveBeenCalledTimes(calls.length); | ||||
|   for (let i = 0; i < calls.length; i++) { | ||||
|     expect(process.stdout.write).toHaveBeenNthCalledWith(i + 1, calls[i]); | ||||
|   } | ||||
| } | ||||
|   | ||||
							
								
								
									
										362
									
								
								__tests__/fixtures/github-repo.json
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										362
									
								
								__tests__/fixtures/github-repo.json
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,362 @@ | ||||
| { | ||||
|   "id": 1296269, | ||||
|   "node_id": "MDEwOlJlcG9zaXRvcnkxMjk2MjY5", | ||||
|   "name": "Hello-World", | ||||
|   "full_name": "octocat/Hello-World", | ||||
|   "owner": { | ||||
|     "login": "octocat", | ||||
|     "id": 1, | ||||
|     "node_id": "MDQ6VXNlcjE=", | ||||
|     "avatar_url": "https://github.com/images/error/octocat_happy.gif", | ||||
|     "gravatar_id": "", | ||||
|     "url": "https://api.github.com/users/octocat", | ||||
|     "html_url": "https://github.com/octocat", | ||||
|     "followers_url": "https://api.github.com/users/octocat/followers", | ||||
|     "following_url": "https://api.github.com/users/octocat/following{/other_user}", | ||||
|     "gists_url": "https://api.github.com/users/octocat/gists{/gist_id}", | ||||
|     "starred_url": "https://api.github.com/users/octocat/starred{/owner}{/repo}", | ||||
|     "subscriptions_url": "https://api.github.com/users/octocat/subscriptions", | ||||
|     "organizations_url": "https://api.github.com/users/octocat/orgs", | ||||
|     "repos_url": "https://api.github.com/users/octocat/repos", | ||||
|     "events_url": "https://api.github.com/users/octocat/events{/privacy}", | ||||
|     "received_events_url": "https://api.github.com/users/octocat/received_events", | ||||
|     "type": "User", | ||||
|     "site_admin": false | ||||
|   }, | ||||
|   "private": false, | ||||
|   "html_url": "https://github.com/octocat/Hello-World", | ||||
|   "description": "This your first repo!", | ||||
|   "fork": false, | ||||
|   "url": "https://api.github.com/repos/octocat/Hello-World", | ||||
|   "archive_url": "http://api.github.com/repos/octocat/Hello-World/{archive_format}{/ref}", | ||||
|   "assignees_url": "http://api.github.com/repos/octocat/Hello-World/assignees{/user}", | ||||
|   "blobs_url": "http://api.github.com/repos/octocat/Hello-World/git/blobs{/sha}", | ||||
|   "branches_url": "http://api.github.com/repos/octocat/Hello-World/branches{/branch}", | ||||
|   "collaborators_url": "http://api.github.com/repos/octocat/Hello-World/collaborators{/collaborator}", | ||||
|   "comments_url": "http://api.github.com/repos/octocat/Hello-World/comments{/number}", | ||||
|   "commits_url": "http://api.github.com/repos/octocat/Hello-World/commits{/sha}", | ||||
|   "compare_url": "http://api.github.com/repos/octocat/Hello-World/compare/{base}...{head}", | ||||
|   "contents_url": "http://api.github.com/repos/octocat/Hello-World/contents/{+path}", | ||||
|   "contributors_url": "http://api.github.com/repos/octocat/Hello-World/contributors", | ||||
|   "deployments_url": "http://api.github.com/repos/octocat/Hello-World/deployments", | ||||
|   "downloads_url": "http://api.github.com/repos/octocat/Hello-World/downloads", | ||||
|   "events_url": "http://api.github.com/repos/octocat/Hello-World/events", | ||||
|   "forks_url": "http://api.github.com/repos/octocat/Hello-World/forks", | ||||
|   "git_commits_url": "http://api.github.com/repos/octocat/Hello-World/git/commits{/sha}", | ||||
|   "git_refs_url": "http://api.github.com/repos/octocat/Hello-World/git/refs{/sha}", | ||||
|   "git_tags_url": "http://api.github.com/repos/octocat/Hello-World/git/tags{/sha}", | ||||
|   "git_url": "git:github.com/octocat/Hello-World.git", | ||||
|   "issue_comment_url": "http://api.github.com/repos/octocat/Hello-World/issues/comments{/number}", | ||||
|   "issue_events_url": "http://api.github.com/repos/octocat/Hello-World/issues/events{/number}", | ||||
|   "issues_url": "http://api.github.com/repos/octocat/Hello-World/issues{/number}", | ||||
|   "keys_url": "http://api.github.com/repos/octocat/Hello-World/keys{/key_id}", | ||||
|   "labels_url": "http://api.github.com/repos/octocat/Hello-World/labels{/name}", | ||||
|   "languages_url": "http://api.github.com/repos/octocat/Hello-World/languages", | ||||
|   "merges_url": "http://api.github.com/repos/octocat/Hello-World/merges", | ||||
|   "milestones_url": "http://api.github.com/repos/octocat/Hello-World/milestones{/number}", | ||||
|   "notifications_url": "http://api.github.com/repos/octocat/Hello-World/notifications{?since,all,participating}", | ||||
|   "pulls_url": "http://api.github.com/repos/octocat/Hello-World/pulls{/number}", | ||||
|   "releases_url": "http://api.github.com/repos/octocat/Hello-World/releases{/id}", | ||||
|   "ssh_url": "git@github.com:octocat/Hello-World.git", | ||||
|   "stargazers_url": "http://api.github.com/repos/octocat/Hello-World/stargazers", | ||||
|   "statuses_url": "http://api.github.com/repos/octocat/Hello-World/statuses/{sha}", | ||||
|   "subscribers_url": "http://api.github.com/repos/octocat/Hello-World/subscribers", | ||||
|   "subscription_url": "http://api.github.com/repos/octocat/Hello-World/subscription", | ||||
|   "tags_url": "http://api.github.com/repos/octocat/Hello-World/tags", | ||||
|   "teams_url": "http://api.github.com/repos/octocat/Hello-World/teams", | ||||
|   "trees_url": "http://api.github.com/repos/octocat/Hello-World/git/trees{/sha}", | ||||
|   "clone_url": "https://github.com/octocat/Hello-World.git", | ||||
|   "mirror_url": "git:git.example.com/octocat/Hello-World", | ||||
|   "hooks_url": "http://api.github.com/repos/octocat/Hello-World/hooks", | ||||
|   "svn_url": "https://svn.github.com/octocat/Hello-World", | ||||
|   "homepage": "https://github.com", | ||||
|   "language": null, | ||||
|   "forks_count": 9, | ||||
|   "stargazers_count": 80, | ||||
|   "watchers_count": 80, | ||||
|   "size": 108, | ||||
|   "default_branch": "master", | ||||
|   "open_issues_count": 0, | ||||
|   "is_template": true, | ||||
|   "topics": [ | ||||
|     "octocat", | ||||
|     "atom", | ||||
|     "electron", | ||||
|     "api" | ||||
|   ], | ||||
|   "has_issues": true, | ||||
|   "has_projects": true, | ||||
|   "has_wiki": true, | ||||
|   "has_pages": false, | ||||
|   "has_downloads": true, | ||||
|   "archived": false, | ||||
|   "disabled": false, | ||||
|   "visibility": "public", | ||||
|   "pushed_at": "2011-01-26T19:06:43Z", | ||||
|   "created_at": "2011-01-26T19:01:12Z", | ||||
|   "updated_at": "2011-01-26T19:14:43Z", | ||||
|   "permissions": { | ||||
|     "pull": true, | ||||
|     "triage": true, | ||||
|     "push": false, | ||||
|     "maintain": false, | ||||
|     "admin": false | ||||
|   }, | ||||
|   "allow_rebase_merge": true, | ||||
|   "template_repository": null, | ||||
|   "temp_clone_token": "ABTLWHOULUVAXGTRYU7OC2876QJ2O", | ||||
|   "allow_squash_merge": true, | ||||
|   "delete_branch_on_merge": true, | ||||
|   "allow_merge_commit": true, | ||||
|   "subscribers_count": 42, | ||||
|   "network_count": 0, | ||||
|   "license": { | ||||
|     "key": "mit", | ||||
|     "name": "MIT License", | ||||
|     "spdx_id": "MIT", | ||||
|     "url": "https://api.github.com/licenses/mit", | ||||
|     "node_id": "MDc6TGljZW5zZW1pdA==" | ||||
|   }, | ||||
|   "organization": { | ||||
|     "login": "octocat", | ||||
|     "id": 1, | ||||
|     "node_id": "MDQ6VXNlcjE=", | ||||
|     "avatar_url": "https://github.com/images/error/octocat_happy.gif", | ||||
|     "gravatar_id": "", | ||||
|     "url": "https://api.github.com/users/octocat", | ||||
|     "html_url": "https://github.com/octocat", | ||||
|     "followers_url": "https://api.github.com/users/octocat/followers", | ||||
|     "following_url": "https://api.github.com/users/octocat/following{/other_user}", | ||||
|     "gists_url": "https://api.github.com/users/octocat/gists{/gist_id}", | ||||
|     "starred_url": "https://api.github.com/users/octocat/starred{/owner}{/repo}", | ||||
|     "subscriptions_url": "https://api.github.com/users/octocat/subscriptions", | ||||
|     "organizations_url": "https://api.github.com/users/octocat/orgs", | ||||
|     "repos_url": "https://api.github.com/users/octocat/repos", | ||||
|     "events_url": "https://api.github.com/users/octocat/events{/privacy}", | ||||
|     "received_events_url": "https://api.github.com/users/octocat/received_events", | ||||
|     "type": "Organization", | ||||
|     "site_admin": false | ||||
|   }, | ||||
|   "parent": { | ||||
|     "id": 1296269, | ||||
|     "node_id": "MDEwOlJlcG9zaXRvcnkxMjk2MjY5", | ||||
|     "name": "Hello-World", | ||||
|     "full_name": "octocat/Hello-World", | ||||
|     "owner": { | ||||
|       "login": "octocat", | ||||
|       "id": 1, | ||||
|       "node_id": "MDQ6VXNlcjE=", | ||||
|       "avatar_url": "https://github.com/images/error/octocat_happy.gif", | ||||
|       "gravatar_id": "", | ||||
|       "url": "https://api.github.com/users/octocat", | ||||
|       "html_url": "https://github.com/octocat", | ||||
|       "followers_url": "https://api.github.com/users/octocat/followers", | ||||
|       "following_url": "https://api.github.com/users/octocat/following{/other_user}", | ||||
|       "gists_url": "https://api.github.com/users/octocat/gists{/gist_id}", | ||||
|       "starred_url": "https://api.github.com/users/octocat/starred{/owner}{/repo}", | ||||
|       "subscriptions_url": "https://api.github.com/users/octocat/subscriptions", | ||||
|       "organizations_url": "https://api.github.com/users/octocat/orgs", | ||||
|       "repos_url": "https://api.github.com/users/octocat/repos", | ||||
|       "events_url": "https://api.github.com/users/octocat/events{/privacy}", | ||||
|       "received_events_url": "https://api.github.com/users/octocat/received_events", | ||||
|       "type": "User", | ||||
|       "site_admin": false | ||||
|     }, | ||||
|     "private": false, | ||||
|     "html_url": "https://github.com/octocat/Hello-World", | ||||
|     "description": "This your first repo!", | ||||
|     "fork": false, | ||||
|     "url": "https://api.github.com/repos/octocat/Hello-World", | ||||
|     "archive_url": "http://api.github.com/repos/octocat/Hello-World/{archive_format}{/ref}", | ||||
|     "assignees_url": "http://api.github.com/repos/octocat/Hello-World/assignees{/user}", | ||||
|     "blobs_url": "http://api.github.com/repos/octocat/Hello-World/git/blobs{/sha}", | ||||
|     "branches_url": "http://api.github.com/repos/octocat/Hello-World/branches{/branch}", | ||||
|     "collaborators_url": "http://api.github.com/repos/octocat/Hello-World/collaborators{/collaborator}", | ||||
|     "comments_url": "http://api.github.com/repos/octocat/Hello-World/comments{/number}", | ||||
|     "commits_url": "http://api.github.com/repos/octocat/Hello-World/commits{/sha}", | ||||
|     "compare_url": "http://api.github.com/repos/octocat/Hello-World/compare/{base}...{head}", | ||||
|     "contents_url": "http://api.github.com/repos/octocat/Hello-World/contents/{+path}", | ||||
|     "contributors_url": "http://api.github.com/repos/octocat/Hello-World/contributors", | ||||
|     "deployments_url": "http://api.github.com/repos/octocat/Hello-World/deployments", | ||||
|     "downloads_url": "http://api.github.com/repos/octocat/Hello-World/downloads", | ||||
|     "events_url": "http://api.github.com/repos/octocat/Hello-World/events", | ||||
|     "forks_url": "http://api.github.com/repos/octocat/Hello-World/forks", | ||||
|     "git_commits_url": "http://api.github.com/repos/octocat/Hello-World/git/commits{/sha}", | ||||
|     "git_refs_url": "http://api.github.com/repos/octocat/Hello-World/git/refs{/sha}", | ||||
|     "git_tags_url": "http://api.github.com/repos/octocat/Hello-World/git/tags{/sha}", | ||||
|     "git_url": "git:github.com/octocat/Hello-World.git", | ||||
|     "issue_comment_url": "http://api.github.com/repos/octocat/Hello-World/issues/comments{/number}", | ||||
|     "issue_events_url": "http://api.github.com/repos/octocat/Hello-World/issues/events{/number}", | ||||
|     "issues_url": "http://api.github.com/repos/octocat/Hello-World/issues{/number}", | ||||
|     "keys_url": "http://api.github.com/repos/octocat/Hello-World/keys{/key_id}", | ||||
|     "labels_url": "http://api.github.com/repos/octocat/Hello-World/labels{/name}", | ||||
|     "languages_url": "http://api.github.com/repos/octocat/Hello-World/languages", | ||||
|     "merges_url": "http://api.github.com/repos/octocat/Hello-World/merges", | ||||
|     "milestones_url": "http://api.github.com/repos/octocat/Hello-World/milestones{/number}", | ||||
|     "notifications_url": "http://api.github.com/repos/octocat/Hello-World/notifications{?since,all,participating}", | ||||
|     "pulls_url": "http://api.github.com/repos/octocat/Hello-World/pulls{/number}", | ||||
|     "releases_url": "http://api.github.com/repos/octocat/Hello-World/releases{/id}", | ||||
|     "ssh_url": "git@github.com:octocat/Hello-World.git", | ||||
|     "stargazers_url": "http://api.github.com/repos/octocat/Hello-World/stargazers", | ||||
|     "statuses_url": "http://api.github.com/repos/octocat/Hello-World/statuses/{sha}", | ||||
|     "subscribers_url": "http://api.github.com/repos/octocat/Hello-World/subscribers", | ||||
|     "subscription_url": "http://api.github.com/repos/octocat/Hello-World/subscription", | ||||
|     "tags_url": "http://api.github.com/repos/octocat/Hello-World/tags", | ||||
|     "teams_url": "http://api.github.com/repos/octocat/Hello-World/teams", | ||||
|     "trees_url": "http://api.github.com/repos/octocat/Hello-World/git/trees{/sha}", | ||||
|     "clone_url": "https://github.com/octocat/Hello-World.git", | ||||
|     "mirror_url": "git:git.example.com/octocat/Hello-World", | ||||
|     "hooks_url": "http://api.github.com/repos/octocat/Hello-World/hooks", | ||||
|     "svn_url": "https://svn.github.com/octocat/Hello-World", | ||||
|     "homepage": "https://github.com", | ||||
|     "language": null, | ||||
|     "forks_count": 9, | ||||
|     "stargazers_count": 80, | ||||
|     "watchers_count": 80, | ||||
|     "size": 108, | ||||
|     "default_branch": "master", | ||||
|     "open_issues_count": 0, | ||||
|     "is_template": true, | ||||
|     "topics": [ | ||||
|       "octocat", | ||||
|       "atom", | ||||
|       "electron", | ||||
|       "api" | ||||
|     ], | ||||
|     "has_issues": true, | ||||
|     "has_projects": true, | ||||
|     "has_wiki": true, | ||||
|     "has_pages": false, | ||||
|     "has_downloads": true, | ||||
|     "archived": false, | ||||
|     "disabled": false, | ||||
|     "visibility": "public", | ||||
|     "pushed_at": "2011-01-26T19:06:43Z", | ||||
|     "created_at": "2011-01-26T19:01:12Z", | ||||
|     "updated_at": "2011-01-26T19:14:43Z", | ||||
|     "permissions": { | ||||
|       "admin": false, | ||||
|       "push": false, | ||||
|       "pull": true | ||||
|     }, | ||||
|     "allow_rebase_merge": true, | ||||
|     "template_repository": null, | ||||
|     "temp_clone_token": "ABTLWHOULUVAXGTRYU7OC2876QJ2O", | ||||
|     "allow_squash_merge": true, | ||||
|     "delete_branch_on_merge": true, | ||||
|     "allow_merge_commit": true, | ||||
|     "subscribers_count": 42, | ||||
|     "network_count": 0 | ||||
|   }, | ||||
|   "source": { | ||||
|     "id": 1296269, | ||||
|     "node_id": "MDEwOlJlcG9zaXRvcnkxMjk2MjY5", | ||||
|     "name": "Hello-World", | ||||
|     "full_name": "octocat/Hello-World", | ||||
|     "owner": { | ||||
|       "login": "octocat", | ||||
|       "id": 1, | ||||
|       "node_id": "MDQ6VXNlcjE=", | ||||
|       "avatar_url": "https://github.com/images/error/octocat_happy.gif", | ||||
|       "gravatar_id": "", | ||||
|       "url": "https://api.github.com/users/octocat", | ||||
|       "html_url": "https://github.com/octocat", | ||||
|       "followers_url": "https://api.github.com/users/octocat/followers", | ||||
|       "following_url": "https://api.github.com/users/octocat/following{/other_user}", | ||||
|       "gists_url": "https://api.github.com/users/octocat/gists{/gist_id}", | ||||
|       "starred_url": "https://api.github.com/users/octocat/starred{/owner}{/repo}", | ||||
|       "subscriptions_url": "https://api.github.com/users/octocat/subscriptions", | ||||
|       "organizations_url": "https://api.github.com/users/octocat/orgs", | ||||
|       "repos_url": "https://api.github.com/users/octocat/repos", | ||||
|       "events_url": "https://api.github.com/users/octocat/events{/privacy}", | ||||
|       "received_events_url": "https://api.github.com/users/octocat/received_events", | ||||
|       "type": "User", | ||||
|       "site_admin": false | ||||
|     }, | ||||
|     "private": false, | ||||
|     "html_url": "https://github.com/octocat/Hello-World", | ||||
|     "description": "This your first repo!", | ||||
|     "fork": false, | ||||
|     "url": "https://api.github.com/repos/octocat/Hello-World", | ||||
|     "archive_url": "http://api.github.com/repos/octocat/Hello-World/{archive_format}{/ref}", | ||||
|     "assignees_url": "http://api.github.com/repos/octocat/Hello-World/assignees{/user}", | ||||
|     "blobs_url": "http://api.github.com/repos/octocat/Hello-World/git/blobs{/sha}", | ||||
|     "branches_url": "http://api.github.com/repos/octocat/Hello-World/branches{/branch}", | ||||
|     "collaborators_url": "http://api.github.com/repos/octocat/Hello-World/collaborators{/collaborator}", | ||||
|     "comments_url": "http://api.github.com/repos/octocat/Hello-World/comments{/number}", | ||||
|     "commits_url": "http://api.github.com/repos/octocat/Hello-World/commits{/sha}", | ||||
|     "compare_url": "http://api.github.com/repos/octocat/Hello-World/compare/{base}...{head}", | ||||
|     "contents_url": "http://api.github.com/repos/octocat/Hello-World/contents/{+path}", | ||||
|     "contributors_url": "http://api.github.com/repos/octocat/Hello-World/contributors", | ||||
|     "deployments_url": "http://api.github.com/repos/octocat/Hello-World/deployments", | ||||
|     "downloads_url": "http://api.github.com/repos/octocat/Hello-World/downloads", | ||||
|     "events_url": "http://api.github.com/repos/octocat/Hello-World/events", | ||||
|     "forks_url": "http://api.github.com/repos/octocat/Hello-World/forks", | ||||
|     "git_commits_url": "http://api.github.com/repos/octocat/Hello-World/git/commits{/sha}", | ||||
|     "git_refs_url": "http://api.github.com/repos/octocat/Hello-World/git/refs{/sha}", | ||||
|     "git_tags_url": "http://api.github.com/repos/octocat/Hello-World/git/tags{/sha}", | ||||
|     "git_url": "git:github.com/octocat/Hello-World.git", | ||||
|     "issue_comment_url": "http://api.github.com/repos/octocat/Hello-World/issues/comments{/number}", | ||||
|     "issue_events_url": "http://api.github.com/repos/octocat/Hello-World/issues/events{/number}", | ||||
|     "issues_url": "http://api.github.com/repos/octocat/Hello-World/issues{/number}", | ||||
|     "keys_url": "http://api.github.com/repos/octocat/Hello-World/keys{/key_id}", | ||||
|     "labels_url": "http://api.github.com/repos/octocat/Hello-World/labels{/name}", | ||||
|     "languages_url": "http://api.github.com/repos/octocat/Hello-World/languages", | ||||
|     "merges_url": "http://api.github.com/repos/octocat/Hello-World/merges", | ||||
|     "milestones_url": "http://api.github.com/repos/octocat/Hello-World/milestones{/number}", | ||||
|     "notifications_url": "http://api.github.com/repos/octocat/Hello-World/notifications{?since,all,participating}", | ||||
|     "pulls_url": "http://api.github.com/repos/octocat/Hello-World/pulls{/number}", | ||||
|     "releases_url": "http://api.github.com/repos/octocat/Hello-World/releases{/id}", | ||||
|     "ssh_url": "git@github.com:octocat/Hello-World.git", | ||||
|     "stargazers_url": "http://api.github.com/repos/octocat/Hello-World/stargazers", | ||||
|     "statuses_url": "http://api.github.com/repos/octocat/Hello-World/statuses/{sha}", | ||||
|     "subscribers_url": "http://api.github.com/repos/octocat/Hello-World/subscribers", | ||||
|     "subscription_url": "http://api.github.com/repos/octocat/Hello-World/subscription", | ||||
|     "tags_url": "http://api.github.com/repos/octocat/Hello-World/tags", | ||||
|     "teams_url": "http://api.github.com/repos/octocat/Hello-World/teams", | ||||
|     "trees_url": "http://api.github.com/repos/octocat/Hello-World/git/trees{/sha}", | ||||
|     "clone_url": "https://github.com/octocat/Hello-World.git", | ||||
|     "mirror_url": "git:git.example.com/octocat/Hello-World", | ||||
|     "hooks_url": "http://api.github.com/repos/octocat/Hello-World/hooks", | ||||
|     "svn_url": "https://svn.github.com/octocat/Hello-World", | ||||
|     "homepage": "https://github.com", | ||||
|     "language": null, | ||||
|     "forks_count": 9, | ||||
|     "stargazers_count": 80, | ||||
|     "watchers_count": 80, | ||||
|     "size": 108, | ||||
|     "default_branch": "master", | ||||
|     "open_issues_count": 0, | ||||
|     "is_template": true, | ||||
|     "topics": [ | ||||
|       "octocat", | ||||
|       "atom", | ||||
|       "electron", | ||||
|       "api" | ||||
|     ], | ||||
|     "has_issues": true, | ||||
|     "has_projects": true, | ||||
|     "has_wiki": true, | ||||
|     "has_pages": false, | ||||
|     "has_downloads": true, | ||||
|     "archived": false, | ||||
|     "disabled": false, | ||||
|     "visibility": "public", | ||||
|     "pushed_at": "2011-01-26T19:06:43Z", | ||||
|     "created_at": "2011-01-26T19:01:12Z", | ||||
|     "updated_at": "2011-01-26T19:14:43Z", | ||||
|     "permissions": { | ||||
|       "admin": false, | ||||
|       "push": false, | ||||
|       "pull": true | ||||
|     }, | ||||
|     "allow_rebase_merge": true, | ||||
|     "template_repository": null, | ||||
|     "temp_clone_token": "ABTLWHOULUVAXGTRYU7OC2876QJ2O", | ||||
|     "allow_squash_merge": true, | ||||
|     "delete_branch_on_merge": true, | ||||
|     "allow_merge_commit": true, | ||||
|     "subscribers_count": 42, | ||||
|     "network_count": 0 | ||||
|   } | ||||
| } | ||||
| @@ -1 +1 @@ | ||||
| bar | ||||
| bar | ||||
|   | ||||
							
								
								
									
										29
									
								
								action.yml
									
									
									
									
									
								
							
							
						
						
									
										29
									
								
								action.yml
									
									
									
									
									
								
							| @@ -13,9 +13,18 @@ inputs: | ||||
|   allow: | ||||
|     description: "List of extra privileged entitlement (e.g., network.host,security.insecure)" | ||||
|     required: false | ||||
|   annotations: | ||||
|     description: "List of annotation to set to the image" | ||||
|     required: false | ||||
|   attests: | ||||
|     description: "List of attestation parameters (e.g., type=sbom,generator=image)" | ||||
|     required: false | ||||
|   build-args: | ||||
|     description: "List of build-time variables" | ||||
|     required: false | ||||
|   build-contexts: | ||||
|     description: "List of additional build contexts (e.g., name=path)" | ||||
|     required: false | ||||
|   builder: | ||||
|     description: "Builder instance" | ||||
|     required: false | ||||
| @@ -48,23 +57,35 @@ inputs: | ||||
|     description: "Do not use cache when building the image" | ||||
|     required: false | ||||
|     default: 'false' | ||||
|   no-cache-filters: | ||||
|     description: "Do not cache specified stages" | ||||
|     required: false | ||||
|   outputs: | ||||
|     description: "List of output destinations (format: type=local,dest=path)" | ||||
|     required: false | ||||
|   platforms: | ||||
|     description: "List of target platforms for build" | ||||
|     required: false | ||||
|   provenance: | ||||
|     description: "Generate provenance attestation for the build (shorthand for --attest=type=provenance)" | ||||
|     required: false | ||||
|   pull: | ||||
|     description: "Always attempt to pull a newer version of the image" | ||||
|     description: "Always attempt to pull all referenced images" | ||||
|     required: false | ||||
|     default: 'false' | ||||
|   push: | ||||
|     description: "Push is a shorthand for --output=type=registry" | ||||
|     required: false | ||||
|     default: 'false' | ||||
|   sbom: | ||||
|     description: "Generate SBOM attestation for the build (shorthand for --attest=type=sbom)" | ||||
|     required: false | ||||
|   secrets: | ||||
|     description: "List of secrets to expose to the build (e.g., key=string, GIT_AUTH_TOKEN=mytoken)" | ||||
|     required: false | ||||
|   secret-envs: | ||||
|     description: "List of secret env vars to expose to the build (e.g., key=envname, MY_SECRET=MY_ENV_VAR)" | ||||
|     required: false | ||||
|   secret-files: | ||||
|     description: "List of secret files to expose to the build (e.g., key=filename, MY_SECRET=./secret.txt)" | ||||
|     required: false | ||||
| @@ -89,12 +110,14 @@ inputs: | ||||
|     required: false | ||||
|  | ||||
| outputs: | ||||
|   imageid: | ||||
|     description: 'Image ID' | ||||
|   digest: | ||||
|     description: 'Image content-addressable identifier also called a digest' | ||||
|     description: 'Image digest' | ||||
|   metadata: | ||||
|     description: 'Build result metadata' | ||||
|  | ||||
| runs: | ||||
|   using: 'node12' | ||||
|   using: 'node20' | ||||
|   main: 'dist/index.js' | ||||
|   post: 'dist/index.js' | ||||
|   | ||||
| @@ -1,15 +1,20 @@ | ||||
| # syntax=docker/dockerfile:1.3-labs | ||||
| # syntax=docker/dockerfile:1 | ||||
| 
 | ||||
| ARG NODE_VERSION | ||||
| ARG DOCKER_VERSION=20.10.10 | ||||
| ARG BUILDX_VERSION=0.7.0 | ||||
| ARG NODE_VERSION=20 | ||||
| 
 | ||||
| FROM node:${NODE_VERSION}-alpine AS base | ||||
| RUN apk add --no-cache cpio findutils git | ||||
| WORKDIR /src | ||||
| RUN --mount=type=bind,target=.,rw \ | ||||
|   --mount=type=cache,target=/src/.yarn/cache <<EOT | ||||
|   corepack enable | ||||
|   yarn --version | ||||
|   yarn config set --home enableTelemetry 0 | ||||
| EOT | ||||
| 
 | ||||
| FROM base AS deps | ||||
| RUN --mount=type=bind,target=.,rw \ | ||||
|   --mount=type=cache,target=/src/.yarn/cache \ | ||||
|   --mount=type=cache,target=/src/node_modules \ | ||||
|   yarn install && mkdir /vendor && cp yarn.lock /vendor | ||||
| 
 | ||||
| @@ -18,18 +23,19 @@ COPY --from=deps /vendor / | ||||
| 
 | ||||
| FROM deps AS vendor-validate | ||||
| RUN --mount=type=bind,target=.,rw <<EOT | ||||
| set -e | ||||
| git add -A | ||||
| cp -rf /vendor/* . | ||||
| if [ -n "$(git status --porcelain -- yarn.lock)" ]; then | ||||
|   echo >&2 'ERROR: Vendor result differs. Please vendor your package with "docker buildx bake vendor-update"' | ||||
|   git status --porcelain -- yarn.lock | ||||
|   exit 1 | ||||
| fi | ||||
|   set -e | ||||
|   git add -A | ||||
|   cp -rf /vendor/* . | ||||
|   if [ -n "$(git status --porcelain -- yarn.lock)" ]; then | ||||
|     echo >&2 'ERROR: Vendor result differs. Please vendor your package with "docker buildx bake vendor-update"' | ||||
|     git status --porcelain -- yarn.lock | ||||
|     exit 1 | ||||
|   fi | ||||
| EOT | ||||
| 
 | ||||
| FROM deps AS build | ||||
| RUN --mount=type=bind,target=.,rw \ | ||||
|   --mount=type=cache,target=/src/.yarn/cache \ | ||||
|   --mount=type=cache,target=/src/node_modules \ | ||||
|   yarn run build && mkdir /out && cp -Rf dist /out/ | ||||
| 
 | ||||
| @@ -38,41 +44,37 @@ COPY --from=build /out / | ||||
| 
 | ||||
| FROM build AS build-validate | ||||
| RUN --mount=type=bind,target=.,rw <<EOT | ||||
| set -e | ||||
| git add -A | ||||
| cp -rf /out/* . | ||||
| if [ -n "$(git status --porcelain -- dist)" ]; then | ||||
|   echo >&2 'ERROR: Build result differs. Please build first with "docker buildx bake build"' | ||||
|   git status --porcelain -- dist | ||||
|   exit 1 | ||||
| fi | ||||
|   set -e | ||||
|   git add -A | ||||
|   cp -rf /out/* . | ||||
|   if [ -n "$(git status --porcelain -- dist)" ]; then | ||||
|     echo >&2 'ERROR: Build result differs. Please build first with "docker buildx bake build"' | ||||
|     git status --porcelain -- dist | ||||
|     exit 1 | ||||
|   fi | ||||
| EOT | ||||
| 
 | ||||
| FROM deps AS format | ||||
| RUN --mount=type=bind,target=.,rw \ | ||||
|   --mount=type=cache,target=/src/.yarn/cache \ | ||||
|   --mount=type=cache,target=/src/node_modules \ | ||||
|   yarn run format \ | ||||
|   && mkdir /out && find . -name '*.ts' -not -path './node_modules/*' | cpio -pdm /out | ||||
|   && mkdir /out && find . -name '*.ts' -not -path './node_modules/*' -not -path './.yarn/*' | cpio -pdm /out | ||||
| 
 | ||||
| FROM scratch AS format-update | ||||
| COPY --from=format /out / | ||||
| 
 | ||||
| FROM deps AS format-validate | ||||
| FROM deps AS lint | ||||
| RUN --mount=type=bind,target=.,rw \ | ||||
|   --mount=type=cache,target=/src/.yarn/cache \ | ||||
|   --mount=type=cache,target=/src/node_modules \ | ||||
|   yarn run format-check | ||||
| 
 | ||||
| FROM docker:${DOCKER_VERSION} as docker | ||||
| FROM docker/buildx-bin:${BUILDX_VERSION} as buildx | ||||
|   yarn run lint | ||||
| 
 | ||||
| FROM deps AS test | ||||
| ENV RUNNER_TEMP=/tmp/github_runner | ||||
| ENV RUNNER_TOOL_CACHE=/tmp/github_tool_cache | ||||
| RUN --mount=type=bind,target=.,rw \ | ||||
|   --mount=type=cache,target=/src/.yarn/cache \ | ||||
|   --mount=type=cache,target=/src/node_modules \ | ||||
|   --mount=type=bind,from=docker,source=/usr/local/bin/docker,target=/usr/bin/docker \ | ||||
|   --mount=type=bind,from=buildx,source=/buildx,target=/usr/libexec/docker/cli-plugins/docker-buildx \ | ||||
|   yarn run test --coverageDirectory=/tmp/coverage | ||||
|   yarn run test --coverage --coverageDirectory=/tmp/coverage | ||||
| 
 | ||||
| FROM scratch AS test-coverage | ||||
| COPY --from=test /tmp/coverage / | ||||
							
								
								
									
										27927
									
								
								dist/index.js
									
									
									
										generated
									
									
										vendored
									
									
								
							
							
						
						
									
										27927
									
								
								dist/index.js
									
									
									
										generated
									
									
										vendored
									
									
								
							
										
											
												File diff suppressed because one or more lines are too long
											
										
									
								
							
							
								
								
									
										1
									
								
								dist/index.js.map
									
									
									
										generated
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										1
									
								
								dist/index.js.map
									
									
									
										generated
									
									
										vendored
									
									
										Normal file
									
								
							
										
											
												File diff suppressed because one or more lines are too long
											
										
									
								
							
							
								
								
									
										3906
									
								
								dist/licenses.txt
									
									
									
										generated
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										3906
									
								
								dist/licenses.txt
									
									
									
										generated
									
									
										vendored
									
									
										Normal file
									
								
							
										
											
												File diff suppressed because it is too large
												Load Diff
											
										
									
								
							
							
								
								
									
										1
									
								
								dist/sourcemap-register.js
									
									
									
										generated
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										1
									
								
								dist/sourcemap-register.js
									
									
									
										generated
									
									
										vendored
									
									
										Normal file
									
								
							
										
											
												File diff suppressed because one or more lines are too long
											
										
									
								
							| @@ -1,70 +1,53 @@ | ||||
| variable "NODE_VERSION" { | ||||
|   default = "12" | ||||
| } | ||||
|  | ||||
| target "node-version" { | ||||
|   args = { | ||||
|     NODE_VERSION = NODE_VERSION | ||||
|   } | ||||
| } | ||||
|  | ||||
| group "default" { | ||||
|   targets = ["build"] | ||||
| } | ||||
|  | ||||
| group "pre-checkin" { | ||||
|   targets = ["vendor-update", "format", "build"] | ||||
|   targets = ["vendor", "format", "build"] | ||||
| } | ||||
|  | ||||
| group "validate" { | ||||
|   targets = ["format-validate", "build-validate", "vendor-validate"] | ||||
|   targets = ["lint", "build-validate", "vendor-validate"] | ||||
| } | ||||
|  | ||||
| target "build" { | ||||
|   inherits = ["node-version"] | ||||
|   dockerfile = "./hack/build.Dockerfile" | ||||
|   dockerfile = "dev.Dockerfile" | ||||
|   target = "build-update" | ||||
|   output = ["."] | ||||
| } | ||||
|  | ||||
| target "build-validate" { | ||||
|   inherits = ["node-version"] | ||||
|   dockerfile = "./hack/build.Dockerfile" | ||||
|   dockerfile = "dev.Dockerfile" | ||||
|   target = "build-validate" | ||||
|   output = ["type=cacheonly"] | ||||
| } | ||||
|  | ||||
| target "format" { | ||||
|   inherits = ["node-version"] | ||||
|   dockerfile = "./hack/build.Dockerfile" | ||||
|   dockerfile = "dev.Dockerfile" | ||||
|   target = "format-update" | ||||
|   output = ["."] | ||||
| } | ||||
|  | ||||
| target "format-validate" { | ||||
|   inherits = ["node-version"] | ||||
|   dockerfile = "./hack/build.Dockerfile" | ||||
|   target = "format-validate" | ||||
| target "lint" { | ||||
|   dockerfile = "dev.Dockerfile" | ||||
|   target = "lint" | ||||
|   output = ["type=cacheonly"] | ||||
| } | ||||
|  | ||||
| target "vendor-update" { | ||||
|   inherits = ["node-version"] | ||||
|   dockerfile = "./hack/build.Dockerfile" | ||||
| target "vendor" { | ||||
|   dockerfile = "dev.Dockerfile" | ||||
|   target = "vendor-update" | ||||
|   output = ["."] | ||||
| } | ||||
|  | ||||
| target "vendor-validate" { | ||||
|   inherits = ["node-version"] | ||||
|   dockerfile = "./hack/build.Dockerfile" | ||||
|   dockerfile = "dev.Dockerfile" | ||||
|   target = "vendor-validate" | ||||
|   output = ["type=cacheonly"] | ||||
| } | ||||
|  | ||||
| target "test" { | ||||
|   inherits = ["node-version"] | ||||
|   dockerfile = "./hack/build.Dockerfile" | ||||
|   dockerfile = "dev.Dockerfile" | ||||
|   target = "test-coverage" | ||||
|   output = ["./coverage"] | ||||
| } | ||||
|   | ||||
| @@ -1,200 +0,0 @@ | ||||
| # Cache | ||||
|  | ||||
| * [Inline cache](#inline-cache) | ||||
| * [Registry cache](#registry-cache) | ||||
| * [GitHub cache](#github-cache) | ||||
|   * [Cache backend API](#cache-backend-api) | ||||
|   * [Local cache](#local-cache) | ||||
|  | ||||
| > More info about cache on [BuildKit](https://github.com/moby/buildkit#export-cache) and [Buildx](https://github.com/docker/buildx/blob/master/docs/reference/buildx_build.md#cache-from) repositories. | ||||
|  | ||||
| ## Inline cache | ||||
|  | ||||
| In most cases you want to use the [`type=inline` cache exporter](https://github.com/moby/buildkit#inline-push-image-and-cache-together). | ||||
| However, note that the `inline` cache exporter only supports `min` cache mode. To enable `max` cache mode, push the | ||||
| image and the cache separately by using the `registry` cache exporter as shown in the [next example](#registry-cache). | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Login to DockerHub | ||||
|         uses: docker/login-action@v1  | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           push: true | ||||
|           tags: user/app:latest | ||||
|           cache-from: type=registry,ref=user/app:latest | ||||
|           cache-to: type=inline | ||||
| ``` | ||||
|  | ||||
| ## Registry cache | ||||
|  | ||||
| You can import/export cache from a cache manifest or (special) image configuration on the registry with the | ||||
| [`type=registry` cache exporter](https://github.com/moby/buildkit/tree/master#registry-push-image-and-cache-separately). | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Login to DockerHub | ||||
|         uses: docker/login-action@v1  | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           push: true | ||||
|           tags: user/app:latest | ||||
|           cache-from: type=registry,ref=user/app:buildcache | ||||
|           cache-to: type=registry,ref=user/app:buildcache,mode=max | ||||
| ``` | ||||
|  | ||||
| ## GitHub cache | ||||
|  | ||||
| ### Cache backend API | ||||
|  | ||||
| > :test_tube: This cache exporter is considered EXPERIMENTAL until further notice. Please provide feedback on | ||||
| > [BuildKit repository](https://github.com/moby/buildkit) if you encounter any issues. | ||||
|  | ||||
| Since [buildx 0.6.0](https://github.com/docker/buildx/releases/tag/v0.6.0) and [BuildKit 0.9.0](https://github.com/moby/buildkit/releases/tag/v0.9.0), | ||||
| you can use the [`type=gha` cache exporter](https://github.com/moby/buildkit/tree/master#github-actions-cache-experimental). | ||||
|  | ||||
| GitHub Actions cache exporter backend uses the [GitHub Cache API](https://github.com/tonistiigi/go-actions-cache/blob/master/api.md) | ||||
| to fetch and upload cache blobs. That's why this type of cache should be exclusively used in a GitHub Action workflow | ||||
| as the `url` (`$ACTIONS_CACHE_URL`) and `token` (`$ACTIONS_RUNTIME_TOKEN`) attributes are populated when a workflow | ||||
| is started. | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Login to DockerHub | ||||
|         uses: docker/login-action@v1  | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           push: true | ||||
|           tags: user/app:latest | ||||
|           cache-from: type=gha | ||||
|           cache-to: type=gha,mode=max | ||||
| ``` | ||||
|  | ||||
| ### Local cache | ||||
|  | ||||
| > :warning: At the moment caches are copied over the existing cache so it [keeps growing](https://github.com/docker/build-push-action/issues/252). | ||||
| > The `Move cache` step is used as a temporary fix (see https://github.com/moby/buildkit/issues/1896). | ||||
|  | ||||
| You can also leverage [GitHub cache](https://docs.github.com/en/actions/configuring-and-managing-workflows/caching-dependencies-to-speed-up-workflows) | ||||
| using [actions/cache](https://github.com/actions/cache) and [`type=local` cache exporter](https://github.com/moby/buildkit#local-directory-1) | ||||
| with this action: | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Cache Docker layers | ||||
|         uses: actions/cache@v2 | ||||
|         with: | ||||
|           path: /tmp/.buildx-cache | ||||
|           key: ${{ runner.os }}-buildx-${{ github.sha }} | ||||
|           restore-keys: | | ||||
|             ${{ runner.os }}-buildx- | ||||
|       - | ||||
|         name: Login to DockerHub | ||||
|         uses: docker/login-action@v1  | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           push: true | ||||
|           tags: user/app:latest | ||||
|           cache-from: type=local,src=/tmp/.buildx-cache | ||||
|           cache-to: type=local,dest=/tmp/.buildx-cache-new,mode=max | ||||
|       - | ||||
|         # Temp fix | ||||
|         # https://github.com/docker/build-push-action/issues/252 | ||||
|         # https://github.com/moby/buildkit/issues/1896 | ||||
|         name: Move cache | ||||
|         run: | | ||||
|           rm -rf /tmp/.buildx-cache | ||||
|           mv /tmp/.buildx-cache-new /tmp/.buildx-cache | ||||
| ``` | ||||
| @@ -1,73 +0,0 @@ | ||||
| # Copy images between registries | ||||
|  | ||||
| Multi-platform images built using buildx can be copied from one registry to another without | ||||
| changing the image SHA using the [tag-push-action](https://github.com/akhilerm/tag-push-action). | ||||
|  | ||||
| The following workflow will first push the image to dockerhub, run some tests using the images | ||||
| and then push to quay and ghcr | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       -  | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v1 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - # quay and ghcr logins for pushing image after testing | ||||
|         name: Login to Quay Registry | ||||
|         uses: docker/login-action@v1  | ||||
|         with: | ||||
|           registry: quay.io | ||||
|           username: ${{ secrets.QUAY_USERNAME }} | ||||
|           password: ${{ secrets.QUAY_TOKEN }} | ||||
|       - | ||||
|         name: Login to GitHub Container Registry | ||||
|         uses: docker/login-action@v1 | ||||
|         with: | ||||
|           registry: ghcr.io | ||||
|           username: ${{ github.repository_owner }} | ||||
|           password: ${{ secrets.GITHUB_TOKEN }} | ||||
|       - | ||||
|         name: Login to DockerHub | ||||
|         uses: docker/login-action@v1  | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           platforms: linux/amd64,linux/arm64 | ||||
|           push: true | ||||
|           tags: | | ||||
|             user/app:latest | ||||
|             user/app:1.0.0 | ||||
|       - # run tests using image from docker hub | ||||
|         name: Run Tests | ||||
|         run: make tests | ||||
|       - # copy multiplatform image from dockerhub to quay and ghcr | ||||
|         name: Push Image to multiple registries | ||||
|         uses: akhilerm/tag-push-action@v2.0.0 | ||||
|         with: | ||||
|           src: docker.io/user/app:1.0.0 | ||||
|           dst: | | ||||
|             quay.io/user/app:latest | ||||
|             quay.io/user/app:1.0.0 | ||||
|             ghcr.io/user/app:latest | ||||
|             ghcr.io/user/app:1.0.0 | ||||
| ``` | ||||
| @@ -1,48 +0,0 @@ | ||||
| # Update DockerHub repo description | ||||
|  | ||||
| You can update the [DockerHub repository description](https://docs.docker.com/docker-hub/repos/) using | ||||
| a third party action called [DockerHub Description](https://github.com/peter-evans/dockerhub-description) | ||||
| with this action: | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v1 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Login to DockerHub | ||||
|         uses: docker/login-action@v1  | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           push: true | ||||
|           tags: user/app:latest | ||||
|       - | ||||
|         name: Update repo description | ||||
|         uses: peter-evans/dockerhub-description@v2 | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_PASSWORD }} | ||||
|           repository: user/app | ||||
| ``` | ||||
| @@ -1,35 +0,0 @@ | ||||
| # Export image to Docker | ||||
|  | ||||
| You may want your build result to be available in the Docker client through `docker images` to be able to use it | ||||
| in another step of your workflow: | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Build | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           load: true | ||||
|           tags: myimage:latest | ||||
|       - | ||||
|         name: Inspect | ||||
|         run: | | ||||
|           docker image inspect myimage:latest | ||||
| ``` | ||||
| @@ -1,44 +0,0 @@ | ||||
| # Isolated builders | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|         id: builder1 | ||||
|       - | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|         id: builder2 | ||||
|       - | ||||
|         name: Builder 1 name | ||||
|         run: echo ${{ steps.builder1.outputs.name }} | ||||
|       - | ||||
|         name: Builder 2 name | ||||
|         run: echo ${{ steps.builder2.outputs.name }} | ||||
|       - | ||||
|         name: Build against builder1 | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           builder: ${{ steps.builder1.outputs.name }} | ||||
|           context: . | ||||
|           target: mytarget1 | ||||
|       - | ||||
|         name: Build against builder2 | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           builder: ${{ steps.builder2.outputs.name }} | ||||
|           context: . | ||||
|           target: mytarget2 | ||||
| ``` | ||||
| @@ -1,44 +0,0 @@ | ||||
| # Local registry | ||||
|  | ||||
| For testing purposes you may need to create a [local registry](https://hub.docker.com/_/registry) to push images into: | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     services: | ||||
|       registry: | ||||
|         image: registry:2 | ||||
|         ports: | ||||
|           - 5000:5000 | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v1 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|         with: | ||||
|           driver-opts: network=host | ||||
|       - | ||||
|         name: Build and push to local registry | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           push: true | ||||
|           tags: localhost:5000/name/app:latest | ||||
|       - | ||||
|         name: Inspect | ||||
|         run: | | ||||
|           docker buildx imagetools inspect localhost:5000/name/app:latest | ||||
| ``` | ||||
| @@ -1,44 +0,0 @@ | ||||
| # Multi-platform image | ||||
|  | ||||
| You can build multi-platform images using the [`platforms` input](../../README.md#inputs) as described below. | ||||
|  | ||||
| > :bulb: List of available platforms will be displayed and available through our [setup-buildx](https://github.com/docker/setup-buildx-action#about) action. | ||||
|  | ||||
| > :bulb: If you want support for more platforms, you can use QEMU with our [setup-qemu](https://github.com/docker/setup-qemu-action) action. | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v1 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Login to DockerHub | ||||
|         uses: docker/login-action@v1  | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           platforms: linux/amd64,linux/arm64 | ||||
|           push: true | ||||
|           tags: user/app:latest | ||||
| ``` | ||||
| @@ -1,57 +0,0 @@ | ||||
| # Push to multi-registries | ||||
|  | ||||
| * [Docker Hub and GHCR](#docker-hub-and-ghcr) | ||||
|  | ||||
| ## Docker Hub and GHCR | ||||
|  | ||||
| The following workflow will connect you to [DockerHub](https://github.com/docker/login-action#dockerhub) | ||||
| and [GitHub Container Registry](https://github.com/docker/login-action#github-container-registry) and push the | ||||
| image to these registries. | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v1 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Login to DockerHub | ||||
|         uses: docker/login-action@v1  | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|       - | ||||
|         name: Login to GitHub Container Registry | ||||
|         uses: docker/login-action@v1  | ||||
|         with: | ||||
|           registry: ghcr.io | ||||
|           username: ${{ github.repository_owner }} | ||||
|           password: ${{ secrets.GITHUB_TOKEN }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           platforms: linux/amd64,linux/arm64 | ||||
|           push: true | ||||
|           tags: | | ||||
|             user/app:latest | ||||
|             user/app:1.0.0 | ||||
|             ghcr.io/user/app:latest | ||||
|             ghcr.io/user/app:1.0.0 | ||||
| ``` | ||||
| @@ -1,84 +0,0 @@ | ||||
| # Secrets | ||||
|  | ||||
| In the following example we will expose and use the [GITHUB_TOKEN secret](https://docs.github.com/en/actions/reference/authentication-in-a-workflow#about-the-github_token-secret) | ||||
| as provided by GitHub in your workflow. | ||||
|  | ||||
| First let's create our `Dockerfile` to use our secret: | ||||
|  | ||||
| ```Dockerfile | ||||
| #syntax=docker/dockerfile:1.2 | ||||
|  | ||||
| FROM alpine | ||||
| RUN --mount=type=secret,id=github_token \ | ||||
|   cat /run/secrets/github_token | ||||
| ``` | ||||
|  | ||||
| As you can see we have named our secret `github_token`. Here is the workflow you can use to expose this secret using | ||||
| the [`secrets` input](../../README.md#inputs): | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v1 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Build | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           platforms: linux/amd64,linux/arm64 | ||||
|           tags: user/app:latest | ||||
|           secrets: | | ||||
|             "github_token=${{ secrets.GITHUB_TOKEN }}" | ||||
| ``` | ||||
|  | ||||
| > :bulb: You can also expose a secret file to the build with [`secret-files`](../../README.md#inputs) input: | ||||
| > ```yaml | ||||
| > secret-files: | | ||||
| >   "MY_SECRET=./secret.txt" | ||||
| > ``` | ||||
|  | ||||
| If you're using [GitHub secrets](https://docs.github.com/en/actions/reference/encrypted-secrets) and need to handle | ||||
| multi-line value, you will need to place the key-value pair between quotes: | ||||
|  | ||||
| ```yaml | ||||
| secrets: | | ||||
|   "MYSECRET=${{ secrets.GPG_KEY }}" | ||||
|   GIT_AUTH_TOKEN=abcdefghi,jklmno=0123456789 | ||||
|   "MYSECRET=aaaaaaaa | ||||
|   bbbbbbb | ||||
|   ccccccccc" | ||||
|   FOO=bar | ||||
|   "EMPTYLINE=aaaa | ||||
|    | ||||
|   bbbb | ||||
|   ccc" | ||||
|   "JSON_SECRET={""key1"":""value1"",""key2"":""value2""}" | ||||
| ``` | ||||
|  | ||||
| | Key                | Value                                            | | ||||
| |--------------------|--------------------------------------------------| | ||||
| | `MYSECRET`         | `***********************` | | ||||
| | `GIT_AUTH_TOKEN`   | `abcdefghi,jklmno=0123456789` | | ||||
| | `MYSECRET`         | `aaaaaaaa\nbbbbbbb\nccccccccc` | | ||||
| | `FOO`              | `bar` | | ||||
| | `EMPTYLINE`        | `aaaa\n\nbbbb\nccc` | | ||||
| | `JSON_SECRET`      | `{"key1":"value1","key2":"value2"}` | | ||||
|  | ||||
| > :bulb: All quote signs need to be doubled for escaping. | ||||
| @@ -1,58 +0,0 @@ | ||||
| # Share built image between jobs | ||||
|  | ||||
| As each job is isolated in its own runner you cannot use your built image between jobs (except for [self-hosted runners](https://docs.github.com/en/actions/hosting-your-own-runners/about-self-hosted-runners)). | ||||
| However, you can [pass data between jobs in a workflow](https://docs.github.com/en/actions/guides/storing-workflow-data-as-artifacts#passing-data-between-jobs-in-a-workflow) | ||||
| using the [actions/upload-artifact](https://github.com/actions/upload-artifact) and [actions/download-artifact](https://github.com/actions/download-artifact) | ||||
| actions: | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   build: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Build and export | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           tags: myimage:latest | ||||
|           outputs: type=docker,dest=/tmp/myimage.tar | ||||
|       - | ||||
|         name: Upload artifact | ||||
|         uses: actions/upload-artifact@v2 | ||||
|         with: | ||||
|           name: myimage | ||||
|           path: /tmp/myimage.tar | ||||
|  | ||||
|   use: | ||||
|     runs-on: ubuntu-latest | ||||
|     needs: build | ||||
|     steps: | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Download artifact | ||||
|         uses: actions/download-artifact@v2 | ||||
|         with: | ||||
|           name: myimage | ||||
|           path: /tmp | ||||
|       - | ||||
|         name: Load image | ||||
|         run: | | ||||
|           docker load --input /tmp/myimage.tar | ||||
|           docker image ls -a | ||||
| ``` | ||||
| @@ -1,76 +0,0 @@ | ||||
| # Handle tags and labels | ||||
|  | ||||
| If you want an "automatic" tag management and [OCI Image Format Specification](https://github.com/opencontainers/image-spec/blob/master/annotations.md) | ||||
| for labels, you can do it in a dedicated step. The following workflow will use the [Docker metadata action](https://github.com/docker/metadata-action) | ||||
| to handle tags and labels based on GitHub actions events and Git metadata. | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   schedule: | ||||
|     - cron: '0 10 * * *' | ||||
|   push: | ||||
|     branches: | ||||
|       - '**' | ||||
|     tags: | ||||
|       - 'v*.*.*' | ||||
|   pull_request: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Docker meta | ||||
|         id: meta | ||||
|         uses: docker/metadata-action@v3 | ||||
|         with: | ||||
|           # list of Docker images to use as base name for tags | ||||
|           images: | | ||||
|             name/app | ||||
|             ghcr.io/username/app | ||||
|           # generate Docker tags based on the following events/attributes | ||||
|           tags: | | ||||
|             type=schedule | ||||
|             type=ref,event=branch | ||||
|             type=ref,event=pr | ||||
|             type=semver,pattern={{version}} | ||||
|             type=semver,pattern={{major}}.{{minor}} | ||||
|             type=semver,pattern={{major}} | ||||
|             type=sha | ||||
|       - | ||||
|         name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v1 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Login to DockerHub | ||||
|         if: github.event_name != 'pull_request' | ||||
|         uses: docker/login-action@v1  | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|       - | ||||
|         name: Login to GHCR | ||||
|         if: github.event_name != 'pull_request' | ||||
|         uses: docker/login-action@v1 | ||||
|         with: | ||||
|           registry: ghcr.io | ||||
|           username: ${{ github.repository_owner }} | ||||
|           password: ${{ secrets.GITHUB_TOKEN }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           push: ${{ github.event_name != 'pull_request' }} | ||||
|           tags: ${{ steps.meta.outputs.tags }} | ||||
|           labels: ${{ steps.meta.outputs.labels }} | ||||
| ``` | ||||
| @@ -1,64 +0,0 @@ | ||||
| # Test your image before pushing it | ||||
|  | ||||
| In some cases, you might want to validate that the image works as expected | ||||
| before pushing it. | ||||
|  | ||||
| The workflow below will be composed of several steps to achieve this: | ||||
| * Build and export the image to Docker | ||||
| * Test your image | ||||
| * Multi-platform build and push the image | ||||
|  | ||||
| ```yaml | ||||
| name: ci | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     branches: | ||||
|       - 'main' | ||||
|  | ||||
| env: | ||||
|   TEST_TAG: user/myapp:test | ||||
|  | ||||
| jobs: | ||||
|   docker: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - | ||||
|         name: Checkout | ||||
|         uses: actions/checkout@v2 | ||||
|       - | ||||
|         name: Set up QEMU | ||||
|         uses: docker/setup-qemu-action@v1 | ||||
|       - | ||||
|         name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v1 | ||||
|       - | ||||
|         name: Login to DockerHub | ||||
|         uses: docker/login-action@v1 | ||||
|         with: | ||||
|           username: ${{ secrets.DOCKERHUB_USERNAME }} | ||||
|           password: ${{ secrets.DOCKERHUB_TOKEN }} | ||||
|       - | ||||
|         name: Build and export to Docker | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           load: true | ||||
|           tags: ${{ env.TEST_TAG }} | ||||
|       - | ||||
|         name: Test | ||||
|         run: | | ||||
|           docker run --rm ${{ env.TEST_TAG }} | ||||
|       - | ||||
|         name: Build and push | ||||
|         uses: docker/build-push-action@v2 | ||||
|         with: | ||||
|           context: . | ||||
|           platforms: linux/amd64,linux/arm64 | ||||
|           push: true | ||||
|           tags: user/app:latest | ||||
| ``` | ||||
|  | ||||
| > :bulb: Build time will not be increased with this workflow because internal | ||||
| > cache for `linux/amd64` will be used from previous step on `Build and push` | ||||
| > step so only `linux/arm64` will be actually built. | ||||
| @@ -1,12 +0,0 @@ | ||||
| module.exports = { | ||||
|   clearMocks: false, | ||||
|   moduleFileExtensions: ['js', 'ts'], | ||||
|   setupFiles: ["dotenv/config"], | ||||
|   testEnvironment: 'node', | ||||
|   testMatch: ['**/*.test.ts'], | ||||
|   testRunner: 'jest-circus/runner', | ||||
|   transform: { | ||||
|     '^.+\\.ts$': 'ts-jest' | ||||
|   }, | ||||
|   verbose: false | ||||
| } | ||||
							
								
								
									
										30
									
								
								jest.config.ts
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										30
									
								
								jest.config.ts
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,30 @@ | ||||
| import fs from 'fs'; | ||||
| import os from 'os'; | ||||
| import path from 'path'; | ||||
|  | ||||
| const tmpDir = fs.mkdtempSync(path.join(os.tmpdir(), 'docker-build-push-action-')); | ||||
|  | ||||
| process.env = Object.assign({}, process.env, { | ||||
|   TEMP: tmpDir, | ||||
|   GITHUB_REPOSITORY: 'docker/build-push-action', | ||||
|   RUNNER_TEMP: path.join(tmpDir, 'runner-temp'), | ||||
|   RUNNER_TOOL_CACHE: path.join(tmpDir, 'runner-tool-cache') | ||||
| }) as { | ||||
|   [key: string]: string; | ||||
| }; | ||||
|  | ||||
| module.exports = { | ||||
|   clearMocks: false, | ||||
|   testEnvironment: 'node', | ||||
|   moduleFileExtensions: ['js', 'ts'], | ||||
|   testMatch: ['**/*.test.ts'], | ||||
|   transform: { | ||||
|     '^.+\\.ts$': 'ts-jest' | ||||
|   }, | ||||
|   moduleNameMapper: { | ||||
|     '^csv-parse/sync': '<rootDir>/node_modules/csv-parse/dist/cjs/sync.cjs' | ||||
|   }, | ||||
|   collectCoverageFrom: ['src/**/{!(main.ts),}.ts'], | ||||
|   coveragePathIgnorePatterns: ['lib/', 'node_modules/', '__mocks__/', '__tests__/'], | ||||
|   verbose: true | ||||
| }; | ||||
							
								
								
									
										60
									
								
								package.json
									
									
									
									
									
								
							
							
						
						
									
										60
									
								
								package.json
									
									
									
									
									
								
							| @@ -1,13 +1,16 @@ | ||||
| { | ||||
|   "name": "docker-build-push", | ||||
|   "description": "Build and push Docker images", | ||||
|   "main": "lib/main.js", | ||||
|   "main": "src/main.ts", | ||||
|   "scripts": { | ||||
|     "build": "tsc && ncc build", | ||||
|     "format": "prettier --write **/*.ts", | ||||
|     "format-check": "prettier --check **/*.ts", | ||||
|     "test": "jest --coverage", | ||||
|     "pre-checkin": "yarn run format && yarn run build" | ||||
|     "build": "ncc build --source-map --minify --license licenses.txt", | ||||
|     "lint": "yarn run prettier && yarn run eslint", | ||||
|     "format": "yarn run prettier:fix && yarn run eslint:fix", | ||||
|     "eslint": "eslint --max-warnings=0 .", | ||||
|     "eslint:fix": "eslint --fix .", | ||||
|     "prettier": "prettier --check \"./**/*.ts\"", | ||||
|     "prettier:fix": "prettier --write \"./**/*.ts\"", | ||||
|     "test": "jest" | ||||
|   }, | ||||
|   "repository": { | ||||
|     "type": "git", | ||||
| @@ -19,36 +22,27 @@ | ||||
|     "build", | ||||
|     "push" | ||||
|   ], | ||||
|   "author": "Docker", | ||||
|   "contributors": [ | ||||
|     { | ||||
|       "name": "CrazyMax", | ||||
|       "url": "https://crazymax.dev" | ||||
|     } | ||||
|   ], | ||||
|   "author": "Docker Inc.", | ||||
|   "license": "Apache-2.0", | ||||
|   "packageManager": "yarn@3.6.3", | ||||
|   "dependencies": { | ||||
|     "@actions/core": "^1.6.0", | ||||
|     "@actions/exec": "^1.1.0", | ||||
|     "@actions/github": "^5.0.0", | ||||
|     "csv-parse": "^4.16.3", | ||||
|     "handlebars": "^4.7.7", | ||||
|     "semver": "^7.3.5", | ||||
|     "tmp": "^0.2.1" | ||||
|     "@actions/core": "^1.10.1", | ||||
|     "@docker/actions-toolkit": "0.24.0", | ||||
|     "handlebars": "^4.7.7" | ||||
|   }, | ||||
|   "devDependencies": { | ||||
|     "@types/csv-parse": "^1.2.2", | ||||
|     "@types/jest": "^26.0.23", | ||||
|     "@types/node": "^14.17.4", | ||||
|     "@types/tmp": "^0.2.0", | ||||
|     "@vercel/ncc": "^0.28.6", | ||||
|     "dotenv": "^8.6.0", | ||||
|     "jest": "^26.6.3", | ||||
|     "jest-circus": "^26.6.3", | ||||
|     "jest-runtime": "^26.6.3", | ||||
|     "prettier": "^2.3.1", | ||||
|     "ts-jest": "^26.5.6", | ||||
|     "typescript": "^4.3.4", | ||||
|     "typescript-formatter": "^7.2.2" | ||||
|     "@types/node": "^20.12.12", | ||||
|     "@typescript-eslint/eslint-plugin": "^7.9.0", | ||||
|     "@typescript-eslint/parser": "^7.9.0", | ||||
|     "@vercel/ncc": "^0.38.1", | ||||
|     "eslint": "^8.57.0", | ||||
|     "eslint-config-prettier": "^9.1.0", | ||||
|     "eslint-plugin-jest": "^28.5.0", | ||||
|     "eslint-plugin-prettier": "^5.1.3", | ||||
|     "jest": "^29.7.0", | ||||
|     "prettier": "^3.2.5", | ||||
|     "ts-jest": "^29.1.2", | ||||
|     "ts-node": "^10.9.2", | ||||
|     "typescript": "^5.4.5" | ||||
|   } | ||||
| } | ||||
|   | ||||
							
								
								
									
										136
									
								
								src/buildx.ts
									
									
									
									
									
								
							
							
						
						
									
										136
									
								
								src/buildx.ts
									
									
									
									
									
								
							| @@ -1,136 +0,0 @@ | ||||
| import csvparse from 'csv-parse/lib/sync'; | ||||
| import fs from 'fs'; | ||||
| import path from 'path'; | ||||
| import * as semver from 'semver'; | ||||
| import * as exec from '@actions/exec'; | ||||
|  | ||||
| import * as context from './context'; | ||||
|  | ||||
| export async function getImageIDFile(): Promise<string> { | ||||
|   return path.join(context.tmpDir(), 'iidfile').split(path.sep).join(path.posix.sep); | ||||
| } | ||||
|  | ||||
| export async function getImageID(): Promise<string | undefined> { | ||||
|   const iidFile = await getImageIDFile(); | ||||
|   if (!fs.existsSync(iidFile)) { | ||||
|     return undefined; | ||||
|   } | ||||
|   return fs.readFileSync(iidFile, {encoding: 'utf-8'}).trim(); | ||||
| } | ||||
|  | ||||
| export async function getMetadataFile(): Promise<string> { | ||||
|   return path.join(context.tmpDir(), 'metadata-file').split(path.sep).join(path.posix.sep); | ||||
| } | ||||
|  | ||||
| export async function getMetadata(): Promise<string | undefined> { | ||||
|   const metadataFile = await getMetadataFile(); | ||||
|   if (!fs.existsSync(metadataFile)) { | ||||
|     return undefined; | ||||
|   } | ||||
|   const content = fs.readFileSync(metadataFile, {encoding: 'utf-8'}).trim(); | ||||
|   if (content === 'null') { | ||||
|     return undefined; | ||||
|   } | ||||
|   return content; | ||||
| } | ||||
|  | ||||
| export async function getSecretString(kvp: string): Promise<string> { | ||||
|   return getSecret(kvp, false); | ||||
| } | ||||
|  | ||||
| export async function getSecretFile(kvp: string): Promise<string> { | ||||
|   return getSecret(kvp, true); | ||||
| } | ||||
|  | ||||
| export async function getSecret(kvp: string, file: boolean): Promise<string> { | ||||
|   const delimiterIndex = kvp.indexOf('='); | ||||
|   const key = kvp.substring(0, delimiterIndex); | ||||
|   let value = kvp.substring(delimiterIndex + 1); | ||||
|   if (key.length == 0 || value.length == 0) { | ||||
|     throw new Error(`${kvp} is not a valid secret`); | ||||
|   } | ||||
|  | ||||
|   if (file) { | ||||
|     if (!fs.existsSync(value)) { | ||||
|       throw new Error(`secret file ${value} not found`); | ||||
|     } | ||||
|     value = fs.readFileSync(value, {encoding: 'utf-8'}); | ||||
|   } | ||||
|  | ||||
|   const secretFile = context.tmpNameSync({ | ||||
|     tmpdir: context.tmpDir() | ||||
|   }); | ||||
|   fs.writeFileSync(secretFile, value); | ||||
|  | ||||
|   return `id=${key},src=${secretFile}`; | ||||
| } | ||||
|  | ||||
| export function isLocalOrTarExporter(outputs: string[]): Boolean { | ||||
|   for (let output of csvparse(outputs.join(`\n`), { | ||||
|     delimiter: ',', | ||||
|     trim: true, | ||||
|     columns: false, | ||||
|     relaxColumnCount: true | ||||
|   })) { | ||||
|     // Local if no type is defined | ||||
|     // https://github.com/docker/buildx/blob/d2bf42f8b4784d83fde17acb3ed84703ddc2156b/build/output.go#L29-L43 | ||||
|     if (output.length == 1 && !output[0].startsWith('type=')) { | ||||
|       return true; | ||||
|     } | ||||
|     for (let [key, value] of output.map(chunk => chunk.split('=').map(item => item.trim()))) { | ||||
|       if (key == 'type' && (value == 'local' || value == 'tar')) { | ||||
|         return true; | ||||
|       } | ||||
|     } | ||||
|   } | ||||
|   return false; | ||||
| } | ||||
|  | ||||
| export function hasGitAuthToken(secrets: string[]): Boolean { | ||||
|   for (let secret of secrets) { | ||||
|     if (secret.startsWith('GIT_AUTH_TOKEN=')) { | ||||
|       return true; | ||||
|     } | ||||
|   } | ||||
|   return false; | ||||
| } | ||||
|  | ||||
| export async function isAvailable(): Promise<Boolean> { | ||||
|   return await exec | ||||
|     .getExecOutput('docker', ['buildx'], { | ||||
|       ignoreReturnCode: true, | ||||
|       silent: true | ||||
|     }) | ||||
|     .then(res => { | ||||
|       if (res.stderr.length > 0 && res.exitCode != 0) { | ||||
|         return false; | ||||
|       } | ||||
|       return res.exitCode == 0; | ||||
|     }); | ||||
| } | ||||
|  | ||||
| export async function getVersion(): Promise<string> { | ||||
|   return await exec | ||||
|     .getExecOutput('docker', ['buildx', 'version'], { | ||||
|       ignoreReturnCode: true, | ||||
|       silent: true | ||||
|     }) | ||||
|     .then(res => { | ||||
|       if (res.stderr.length > 0 && res.exitCode != 0) { | ||||
|         throw new Error(res.stderr.trim()); | ||||
|       } | ||||
|       return parseVersion(res.stdout.trim()); | ||||
|     }); | ||||
| } | ||||
|  | ||||
| export function parseVersion(stdout: string): string { | ||||
|   const matches = /\sv?([0-9a-f]{7}|[0-9.]+)/.exec(stdout); | ||||
|   if (!matches) { | ||||
|     throw new Error(`Cannot parse buildx version`); | ||||
|   } | ||||
|   return matches[1]; | ||||
| } | ||||
|  | ||||
| export function satisfies(version: string, range: string): boolean { | ||||
|   return semver.satisfies(version, range) || /^[0-9a-f]{7}$/.exec(version) !== null; | ||||
| } | ||||
							
								
								
									
										285
									
								
								src/context.ts
									
									
									
									
									
								
							
							
						
						
									
										285
									
								
								src/context.ts
									
									
									
									
									
								
							| @@ -1,194 +1,210 @@ | ||||
| import csvparse from 'csv-parse/lib/sync'; | ||||
| import * as fs from 'fs'; | ||||
| import * as os from 'os'; | ||||
| import * as path from 'path'; | ||||
| import * as tmp from 'tmp'; | ||||
|  | ||||
| import * as core from '@actions/core'; | ||||
| import {issueCommand} from '@actions/core/lib/command'; | ||||
| import * as github from '@actions/github'; | ||||
|  | ||||
| import * as buildx from './buildx'; | ||||
| import * as handlebars from 'handlebars'; | ||||
|  | ||||
| let _defaultContext, _tmpDir: string; | ||||
| import {Build} from '@docker/actions-toolkit/lib/buildx/build'; | ||||
| import {Context} from '@docker/actions-toolkit/lib/context'; | ||||
| import {GitHub} from '@docker/actions-toolkit/lib/github'; | ||||
| import {Toolkit} from '@docker/actions-toolkit/lib/toolkit'; | ||||
| import {Util} from '@docker/actions-toolkit/lib/util'; | ||||
|  | ||||
| export interface Inputs { | ||||
|   addHosts: string[]; | ||||
|   'add-hosts': string[]; | ||||
|   allow: string[]; | ||||
|   buildArgs: string[]; | ||||
|   annotations: string[]; | ||||
|   attests: string[]; | ||||
|   'build-args': string[]; | ||||
|   'build-contexts': string[]; | ||||
|   builder: string; | ||||
|   cacheFrom: string[]; | ||||
|   cacheTo: string[]; | ||||
|   cgroupParent: string; | ||||
|   'cache-from': string[]; | ||||
|   'cache-to': string[]; | ||||
|   'cgroup-parent': string; | ||||
|   context: string; | ||||
|   file: string; | ||||
|   labels: string[]; | ||||
|   load: boolean; | ||||
|   network: string; | ||||
|   noCache: boolean; | ||||
|   'no-cache': boolean; | ||||
|   'no-cache-filters': string[]; | ||||
|   outputs: string[]; | ||||
|   platforms: string[]; | ||||
|   provenance: string; | ||||
|   pull: boolean; | ||||
|   push: boolean; | ||||
|   sbom: string; | ||||
|   secrets: string[]; | ||||
|   secretFiles: string[]; | ||||
|   shmSize: string; | ||||
|   'secret-envs': string[]; | ||||
|   'secret-files': string[]; | ||||
|   'shm-size': string; | ||||
|   ssh: string[]; | ||||
|   tags: string[]; | ||||
|   target: string; | ||||
|   ulimit: string[]; | ||||
|   githubToken: string; | ||||
|   'github-token': string; | ||||
| } | ||||
|  | ||||
| export function defaultContext(): string { | ||||
|   if (!_defaultContext) { | ||||
|     let ref = github.context.ref; | ||||
|     if (github.context.sha && ref && !ref.startsWith('refs/')) { | ||||
|       ref = `refs/heads/${github.context.ref}`; | ||||
|     } | ||||
|     if (github.context.sha && !ref.startsWith(`refs/pull/`)) { | ||||
|       ref = github.context.sha; | ||||
|     } | ||||
|     _defaultContext = `${process.env.GITHUB_SERVER_URL || 'https://github.com'}/${github.context.repo.owner}/${github.context.repo.repo}.git#${ref}`; | ||||
|   } | ||||
|   return _defaultContext; | ||||
| } | ||||
|  | ||||
| export function tmpDir(): string { | ||||
|   if (!_tmpDir) { | ||||
|     _tmpDir = fs.mkdtempSync(path.join(os.tmpdir(), 'docker-build-push-')).split(path.sep).join(path.posix.sep); | ||||
|   } | ||||
|   return _tmpDir; | ||||
| } | ||||
|  | ||||
| export function tmpNameSync(options?: tmp.TmpNameOptions): string { | ||||
|   return tmp.tmpNameSync(options); | ||||
| } | ||||
|  | ||||
| export async function getInputs(defaultContext: string): Promise<Inputs> { | ||||
| export async function getInputs(): Promise<Inputs> { | ||||
|   return { | ||||
|     addHosts: await getInputList('add-hosts'), | ||||
|     allow: await getInputList('allow'), | ||||
|     buildArgs: await getInputList('build-args', true), | ||||
|     'add-hosts': Util.getInputList('add-hosts'), | ||||
|     allow: Util.getInputList('allow'), | ||||
|     annotations: Util.getInputList('annotations', {ignoreComma: true}), | ||||
|     attests: Util.getInputList('attests', {ignoreComma: true}), | ||||
|     'build-args': Util.getInputList('build-args', {ignoreComma: true}), | ||||
|     'build-contexts': Util.getInputList('build-contexts', {ignoreComma: true}), | ||||
|     builder: core.getInput('builder'), | ||||
|     cacheFrom: await getInputList('cache-from', true), | ||||
|     cacheTo: await getInputList('cache-to', true), | ||||
|     cgroupParent: core.getInput('cgroup-parent'), | ||||
|     context: core.getInput('context') || defaultContext, | ||||
|     'cache-from': Util.getInputList('cache-from', {ignoreComma: true}), | ||||
|     'cache-to': Util.getInputList('cache-to', {ignoreComma: true}), | ||||
|     'cgroup-parent': core.getInput('cgroup-parent'), | ||||
|     context: core.getInput('context') || Context.gitContext(), | ||||
|     file: core.getInput('file'), | ||||
|     labels: await getInputList('labels', true), | ||||
|     labels: Util.getInputList('labels', {ignoreComma: true}), | ||||
|     load: core.getBooleanInput('load'), | ||||
|     network: core.getInput('network'), | ||||
|     noCache: core.getBooleanInput('no-cache'), | ||||
|     outputs: await getInputList('outputs', true), | ||||
|     platforms: await getInputList('platforms'), | ||||
|     'no-cache': core.getBooleanInput('no-cache'), | ||||
|     'no-cache-filters': Util.getInputList('no-cache-filters'), | ||||
|     outputs: Util.getInputList('outputs', {ignoreComma: true, quote: false}), | ||||
|     platforms: Util.getInputList('platforms'), | ||||
|     provenance: Build.getProvenanceInput('provenance'), | ||||
|     pull: core.getBooleanInput('pull'), | ||||
|     push: core.getBooleanInput('push'), | ||||
|     secrets: await getInputList('secrets', true), | ||||
|     secretFiles: await getInputList('secret-files', true), | ||||
|     shmSize: core.getInput('shm-size'), | ||||
|     ssh: await getInputList('ssh'), | ||||
|     tags: await getInputList('tags'), | ||||
|     sbom: core.getInput('sbom'), | ||||
|     secrets: Util.getInputList('secrets', {ignoreComma: true}), | ||||
|     'secret-envs': Util.getInputList('secret-envs'), | ||||
|     'secret-files': Util.getInputList('secret-files', {ignoreComma: true}), | ||||
|     'shm-size': core.getInput('shm-size'), | ||||
|     ssh: Util.getInputList('ssh'), | ||||
|     tags: Util.getInputList('tags'), | ||||
|     target: core.getInput('target'), | ||||
|     ulimit: await getInputList('ulimit', true), | ||||
|     githubToken: core.getInput('github-token') | ||||
|     ulimit: Util.getInputList('ulimit', {ignoreComma: true}), | ||||
|     'github-token': core.getInput('github-token') | ||||
|   }; | ||||
| } | ||||
|  | ||||
| export async function getArgs(inputs: Inputs, defaultContext: string, buildxVersion: string): Promise<Array<string>> { | ||||
|   let args: Array<string> = ['buildx']; | ||||
|   args.push.apply(args, await getBuildArgs(inputs, defaultContext, buildxVersion)); | ||||
|   args.push.apply(args, await getCommonArgs(inputs, buildxVersion)); | ||||
|   args.push(handlebars.compile(inputs.context)({defaultContext})); | ||||
|   return args; | ||||
| export async function getArgs(inputs: Inputs, toolkit: Toolkit): Promise<Array<string>> { | ||||
|   const context = handlebars.compile(inputs.context)({ | ||||
|     defaultContext: Context.gitContext() | ||||
|   }); | ||||
|   // prettier-ignore | ||||
|   return [ | ||||
|     ...await getBuildArgs(inputs, context, toolkit), | ||||
|     ...await getCommonArgs(inputs, toolkit), | ||||
|     context | ||||
|   ]; | ||||
| } | ||||
|  | ||||
| async function getBuildArgs(inputs: Inputs, defaultContext: string, buildxVersion: string): Promise<Array<string>> { | ||||
|   let args: Array<string> = ['build']; | ||||
|   await asyncForEach(inputs.addHosts, async addHost => { | ||||
| async function getBuildArgs(inputs: Inputs, context: string, toolkit: Toolkit): Promise<Array<string>> { | ||||
|   const args: Array<string> = ['build']; | ||||
|   await Util.asyncForEach(inputs['add-hosts'], async addHost => { | ||||
|     args.push('--add-host', addHost); | ||||
|   }); | ||||
|   if (inputs.allow.length > 0) { | ||||
|     args.push('--allow', inputs.allow.join(',')); | ||||
|   } | ||||
|   await asyncForEach(inputs.buildArgs, async buildArg => { | ||||
|   if (await toolkit.buildx.versionSatisfies('>=0.12.0')) { | ||||
|     await Util.asyncForEach(inputs.annotations, async annotation => { | ||||
|       args.push('--annotation', annotation); | ||||
|     }); | ||||
|   } else if (inputs.annotations.length > 0) { | ||||
|     core.warning("Annotations are only supported by buildx >= 0.12.0; the input 'annotations' is ignored."); | ||||
|   } | ||||
|   await Util.asyncForEach(inputs['build-args'], async buildArg => { | ||||
|     args.push('--build-arg', buildArg); | ||||
|   }); | ||||
|   await asyncForEach(inputs.cacheFrom, async cacheFrom => { | ||||
|   if (await toolkit.buildx.versionSatisfies('>=0.8.0')) { | ||||
|     await Util.asyncForEach(inputs['build-contexts'], async buildContext => { | ||||
|       args.push('--build-context', buildContext); | ||||
|     }); | ||||
|   } else if (inputs['build-contexts'].length > 0) { | ||||
|     core.warning("Build contexts are only supported by buildx >= 0.8.0; the input 'build-contexts' is ignored."); | ||||
|   } | ||||
|   await Util.asyncForEach(inputs['cache-from'], async cacheFrom => { | ||||
|     args.push('--cache-from', cacheFrom); | ||||
|   }); | ||||
|   await asyncForEach(inputs.cacheTo, async cacheTo => { | ||||
|   await Util.asyncForEach(inputs['cache-to'], async cacheTo => { | ||||
|     args.push('--cache-to', cacheTo); | ||||
|   }); | ||||
|   if (inputs.cgroupParent) { | ||||
|     args.push('--cgroup-parent', inputs.cgroupParent); | ||||
|   if (inputs['cgroup-parent']) { | ||||
|     args.push('--cgroup-parent', inputs['cgroup-parent']); | ||||
|   } | ||||
|   await Util.asyncForEach(inputs['secret-envs'], async secretEnv => { | ||||
|     try { | ||||
|       args.push('--secret', Build.resolveSecretEnv(secretEnv)); | ||||
|     } catch (err) { | ||||
|       core.warning(err.message); | ||||
|     } | ||||
|   }); | ||||
|   if (inputs.file) { | ||||
|     args.push('--file', inputs.file); | ||||
|   } | ||||
|   if (!buildx.isLocalOrTarExporter(inputs.outputs) && (inputs.platforms.length == 0 || buildx.satisfies(buildxVersion, '>=0.4.2'))) { | ||||
|     args.push('--iidfile', await buildx.getImageIDFile()); | ||||
|   if (!Build.hasLocalExporter(inputs.outputs) && !Build.hasTarExporter(inputs.outputs) && (inputs.platforms.length == 0 || (await toolkit.buildx.versionSatisfies('>=0.4.2')))) { | ||||
|     args.push('--iidfile', toolkit.buildxBuild.getImageIDFilePath()); | ||||
|   } | ||||
|   await asyncForEach(inputs.labels, async label => { | ||||
|   await Util.asyncForEach(inputs.labels, async label => { | ||||
|     args.push('--label', label); | ||||
|   }); | ||||
|   await asyncForEach(inputs.outputs, async output => { | ||||
|   await Util.asyncForEach(inputs['no-cache-filters'], async noCacheFilter => { | ||||
|     args.push('--no-cache-filter', noCacheFilter); | ||||
|   }); | ||||
|   await Util.asyncForEach(inputs.outputs, async output => { | ||||
|     args.push('--output', output); | ||||
|   }); | ||||
|   if (inputs.platforms.length > 0) { | ||||
|     args.push('--platform', inputs.platforms.join(',')); | ||||
|   } | ||||
|   await asyncForEach(inputs.secrets, async secret => { | ||||
|   if (await toolkit.buildx.versionSatisfies('>=0.10.0')) { | ||||
|     args.push(...(await getAttestArgs(inputs, toolkit))); | ||||
|   } else { | ||||
|     core.warning("Attestations are only supported by buildx >= 0.10.0; the inputs 'attests', 'provenance' and 'sbom' are ignored."); | ||||
|   } | ||||
|   await Util.asyncForEach(inputs.secrets, async secret => { | ||||
|     try { | ||||
|       args.push('--secret', await buildx.getSecretString(secret)); | ||||
|       args.push('--secret', Build.resolveSecretString(secret)); | ||||
|     } catch (err) { | ||||
|       core.warning(err.message); | ||||
|     } | ||||
|   }); | ||||
|   await asyncForEach(inputs.secretFiles, async secretFile => { | ||||
|   await Util.asyncForEach(inputs['secret-files'], async secretFile => { | ||||
|     try { | ||||
|       args.push('--secret', await buildx.getSecretFile(secretFile)); | ||||
|       args.push('--secret', Build.resolveSecretFile(secretFile)); | ||||
|     } catch (err) { | ||||
|       core.warning(err.message); | ||||
|     } | ||||
|   }); | ||||
|   if (inputs.githubToken && !buildx.hasGitAuthToken(inputs.secrets) && inputs.context == defaultContext) { | ||||
|     args.push('--secret', await buildx.getSecretString(`GIT_AUTH_TOKEN=${inputs.githubToken}`)); | ||||
|   if (inputs['github-token'] && !Build.hasGitAuthTokenSecret(inputs.secrets) && context.startsWith(Context.gitContext())) { | ||||
|     args.push('--secret', Build.resolveSecretString(`GIT_AUTH_TOKEN=${inputs['github-token']}`)); | ||||
|   } | ||||
|   if (inputs.shmSize) { | ||||
|     args.push('--shm-size', inputs.shmSize); | ||||
|   if (inputs['shm-size']) { | ||||
|     args.push('--shm-size', inputs['shm-size']); | ||||
|   } | ||||
|   await asyncForEach(inputs.ssh, async ssh => { | ||||
|   await Util.asyncForEach(inputs.ssh, async ssh => { | ||||
|     args.push('--ssh', ssh); | ||||
|   }); | ||||
|   await asyncForEach(inputs.tags, async tag => { | ||||
|   await Util.asyncForEach(inputs.tags, async tag => { | ||||
|     args.push('--tag', tag); | ||||
|   }); | ||||
|   if (inputs.target) { | ||||
|     args.push('--target', inputs.target); | ||||
|   } | ||||
|   await asyncForEach(inputs.ulimit, async ulimit => { | ||||
|   await Util.asyncForEach(inputs.ulimit, async ulimit => { | ||||
|     args.push('--ulimit', ulimit); | ||||
|   }); | ||||
|   return args; | ||||
| } | ||||
|  | ||||
| async function getCommonArgs(inputs: Inputs, buildxVersion: string): Promise<Array<string>> { | ||||
|   let args: Array<string> = []; | ||||
| async function getCommonArgs(inputs: Inputs, toolkit: Toolkit): Promise<Array<string>> { | ||||
|   const args: Array<string> = []; | ||||
|   if (inputs.builder) { | ||||
|     args.push('--builder', inputs.builder); | ||||
|   } | ||||
|   if (inputs.load) { | ||||
|     args.push('--load'); | ||||
|   } | ||||
|   if (buildx.satisfies(buildxVersion, '>=0.6.0')) { | ||||
|     args.push('--metadata-file', await buildx.getMetadataFile()); | ||||
|   if (await toolkit.buildx.versionSatisfies('>=0.6.0')) { | ||||
|     args.push('--metadata-file', toolkit.buildxBuild.getMetadataFilePath()); | ||||
|   } | ||||
|   if (inputs.network) { | ||||
|     args.push('--network', inputs.network); | ||||
|   } | ||||
|   if (inputs.noCache) { | ||||
|   if (inputs['no-cache']) { | ||||
|     args.push('--no-cache'); | ||||
|   } | ||||
|   if (inputs.pull) { | ||||
| @@ -200,40 +216,51 @@ async function getCommonArgs(inputs: Inputs, buildxVersion: string): Promise<Arr | ||||
|   return args; | ||||
| } | ||||
|  | ||||
| export async function getInputList(name: string, ignoreComma?: boolean): Promise<string[]> { | ||||
|   let res: Array<string> = []; | ||||
| async function getAttestArgs(inputs: Inputs, toolkit: Toolkit): Promise<Array<string>> { | ||||
|   const args: Array<string> = []; | ||||
|  | ||||
|   const items = core.getInput(name); | ||||
|   if (items == '') { | ||||
|     return res; | ||||
|   } | ||||
|  | ||||
|   for (let output of (await csvparse(items, { | ||||
|     columns: false, | ||||
|     relax: true, | ||||
|     relaxColumnCount: true, | ||||
|     skipLinesWithEmptyValues: true | ||||
|   })) as Array<string[]>) { | ||||
|     if (output.length == 1) { | ||||
|       res.push(output[0]); | ||||
|       continue; | ||||
|     } else if (!ignoreComma) { | ||||
|       res.push(...output); | ||||
|       continue; | ||||
|   // check if provenance attestation is set in attests input | ||||
|   let hasAttestProvenance = false; | ||||
|   await Util.asyncForEach(inputs.attests, async (attest: string) => { | ||||
|     if (Build.hasAttestationType('provenance', attest)) { | ||||
|       hasAttestProvenance = true; | ||||
|     } | ||||
|     res.push(output.join(',')); | ||||
|   }); | ||||
|  | ||||
|   let provenanceSet = false; | ||||
|   let sbomSet = false; | ||||
|   if (inputs.provenance) { | ||||
|     args.push('--attest', Build.resolveAttestationAttrs(`type=provenance,${inputs.provenance}`)); | ||||
|     provenanceSet = true; | ||||
|   } else if (!hasAttestProvenance && (await toolkit.buildkit.versionSatisfies(inputs.builder, '>=0.11.0')) && !Build.hasDockerExporter(inputs.outputs, inputs.load)) { | ||||
|     // if provenance not specified in provenance or attests inputs and BuildKit | ||||
|     // version compatible for attestation, set default provenance. Also needs | ||||
|     // to make sure user doesn't want to explicitly load the image to docker. | ||||
|     if (GitHub.context.payload.repository?.private ?? false) { | ||||
|       // if this is a private repository, we set the default provenance | ||||
|       // attributes being set in buildx: https://github.com/docker/buildx/blob/fb27e3f919dcbf614d7126b10c2bc2d0b1927eb6/build/build.go#L603 | ||||
|       args.push('--attest', `type=provenance,${Build.resolveProvenanceAttrs(`mode=min,inline-only=true`)}`); | ||||
|     } else { | ||||
|       // for a public repository, we set max provenance mode. | ||||
|       args.push('--attest', `type=provenance,${Build.resolveProvenanceAttrs(`mode=max`)}`); | ||||
|     } | ||||
|   } | ||||
|   if (inputs.sbom) { | ||||
|     args.push('--attest', Build.resolveAttestationAttrs(`type=sbom,${inputs.sbom}`)); | ||||
|     sbomSet = true; | ||||
|   } | ||||
|  | ||||
|   return res.filter(item => item).map(pat => pat.trim()); | ||||
| } | ||||
|   // set attests but check if provenance or sbom types already set as | ||||
|   // provenance and sbom inputs take precedence over attests input. | ||||
|   await Util.asyncForEach(inputs.attests, async (attest: string) => { | ||||
|     if (!Build.hasAttestationType('provenance', attest) && !Build.hasAttestationType('sbom', attest)) { | ||||
|       args.push('--attest', Build.resolveAttestationAttrs(attest)); | ||||
|     } else if (!provenanceSet && Build.hasAttestationType('provenance', attest)) { | ||||
|       args.push('--attest', Build.resolveProvenanceAttrs(attest)); | ||||
|     } else if (!sbomSet && Build.hasAttestationType('sbom', attest)) { | ||||
|       args.push('--attest', attest); | ||||
|     } | ||||
|   }); | ||||
|  | ||||
| export const asyncForEach = async (array, callback) => { | ||||
|   for (let index = 0; index < array.length; index++) { | ||||
|     await callback(array[index], index, array); | ||||
|   } | ||||
| }; | ||||
|  | ||||
| // FIXME: Temp fix https://github.com/actions/toolkit/issues/777 | ||||
| export function setOutput(name: string, value: any): void { | ||||
|   issueCommand('set-output', {name}, value); | ||||
|   return args; | ||||
| } | ||||
|   | ||||
							
								
								
									
										165
									
								
								src/main.ts
									
									
									
									
									
								
							
							
						
						
									
										165
									
								
								src/main.ts
									
									
									
									
									
								
							| @@ -1,65 +1,130 @@ | ||||
| import * as fs from 'fs'; | ||||
| import * as buildx from './buildx'; | ||||
| import * as context from './context'; | ||||
| import * as path from 'path'; | ||||
| import * as stateHelper from './state-helper'; | ||||
| import * as core from '@actions/core'; | ||||
| import * as exec from '@actions/exec'; | ||||
| import * as actionsToolkit from '@docker/actions-toolkit'; | ||||
|  | ||||
| async function run(): Promise<void> { | ||||
|   try { | ||||
|     core.startGroup(`Docker info`); | ||||
|     await exec.exec('docker', ['version']); | ||||
|     await exec.exec('docker', ['info']); | ||||
|     core.endGroup(); | ||||
| import {Context} from '@docker/actions-toolkit/lib/context'; | ||||
| import {Docker} from '@docker/actions-toolkit/lib/docker/docker'; | ||||
| import {Exec} from '@docker/actions-toolkit/lib/exec'; | ||||
| import {GitHub} from '@docker/actions-toolkit/lib/github'; | ||||
| import {Toolkit} from '@docker/actions-toolkit/lib/toolkit'; | ||||
|  | ||||
|     if (!(await buildx.isAvailable())) { | ||||
| import {ConfigFile} from '@docker/actions-toolkit/lib/types/docker/docker'; | ||||
|  | ||||
| import * as context from './context'; | ||||
|  | ||||
| actionsToolkit.run( | ||||
|   // main | ||||
|   async () => { | ||||
|     const inputs: context.Inputs = await context.getInputs(); | ||||
|     core.debug(`inputs: ${JSON.stringify(inputs)}`); | ||||
|  | ||||
|     const toolkit = new Toolkit(); | ||||
|  | ||||
|     await core.group(`GitHub Actions runtime token ACs`, async () => { | ||||
|       try { | ||||
|         await GitHub.printActionsRuntimeTokenACs(); | ||||
|       } catch (e) { | ||||
|         core.warning(e.message); | ||||
|       } | ||||
|     }); | ||||
|  | ||||
|     await core.group(`Docker info`, async () => { | ||||
|       try { | ||||
|         await Docker.printVersion(); | ||||
|         await Docker.printInfo(); | ||||
|       } catch (e) { | ||||
|         core.info(e.message); | ||||
|       } | ||||
|     }); | ||||
|  | ||||
|     await core.group(`Proxy configuration`, async () => { | ||||
|       let dockerConfig: ConfigFile | undefined; | ||||
|       let dockerConfigMalformed = false; | ||||
|       try { | ||||
|         dockerConfig = await Docker.configFile(); | ||||
|       } catch (e) { | ||||
|         dockerConfigMalformed = true; | ||||
|         core.warning(`Unable to parse config file ${path.join(Docker.configDir, 'config.json')}: ${e}`); | ||||
|       } | ||||
|       if (dockerConfig && dockerConfig.proxies) { | ||||
|         for (const host in dockerConfig.proxies) { | ||||
|           let prefix = ''; | ||||
|           if (Object.keys(dockerConfig.proxies).length > 1) { | ||||
|             prefix = '  '; | ||||
|             core.info(host); | ||||
|           } | ||||
|           for (const key in dockerConfig.proxies[host]) { | ||||
|             core.info(`${prefix}${key}: ${dockerConfig.proxies[host][key]}`); | ||||
|           } | ||||
|         } | ||||
|       } else if (!dockerConfigMalformed) { | ||||
|         core.info('No proxy configuration found'); | ||||
|       } | ||||
|     }); | ||||
|  | ||||
|     if (!(await toolkit.buildx.isAvailable())) { | ||||
|       core.setFailed(`Docker buildx is required. See https://github.com/docker/setup-buildx-action to set up buildx.`); | ||||
|       return; | ||||
|     } | ||||
|     stateHelper.setTmpDir(context.tmpDir()); | ||||
|  | ||||
|     const buildxVersion = await buildx.getVersion(); | ||||
|     const defContext = context.defaultContext(); | ||||
|     let inputs: context.Inputs = await context.getInputs(defContext); | ||||
|     stateHelper.setTmpDir(Context.tmpDir()); | ||||
|  | ||||
|     const args: string[] = await context.getArgs(inputs, defContext, buildxVersion); | ||||
|     await exec | ||||
|       .getExecOutput('docker', args, { | ||||
|         ignoreReturnCode: true | ||||
|       }) | ||||
|       .then(res => { | ||||
|         if (res.stderr.length > 0 && res.exitCode != 0) { | ||||
|           throw new Error(`buildx failed with: ${res.stderr.match(/(.*)\s*$/)![0].trim()}`); | ||||
|         } | ||||
|       }); | ||||
|     await core.group(`Buildx version`, async () => { | ||||
|       await toolkit.buildx.printVersion(); | ||||
|     }); | ||||
|  | ||||
|     await core.group(`Setting outputs`, async () => { | ||||
|       const imageID = await buildx.getImageID(); | ||||
|       const metadata = await buildx.getMetadata(); | ||||
|       if (imageID) { | ||||
|         core.info(`digest=${imageID}`); | ||||
|         context.setOutput('digest', imageID); | ||||
|       } | ||||
|       if (metadata) { | ||||
|         core.info(`metadata=${metadata}`); | ||||
|         context.setOutput('metadata', metadata); | ||||
|     await core.group(`Builder info`, async () => { | ||||
|       const builder = await toolkit.builder.inspect(inputs.builder); | ||||
|       core.info(JSON.stringify(builder, null, 2)); | ||||
|     }); | ||||
|  | ||||
|     const args: string[] = await context.getArgs(inputs, toolkit); | ||||
|     core.debug(`context.getArgs: ${JSON.stringify(args)}`); | ||||
|  | ||||
|     const buildCmd = await toolkit.buildx.getCommand(args); | ||||
|     core.debug(`buildCmd.command: ${buildCmd.command}`); | ||||
|     core.debug(`buildCmd.args: ${JSON.stringify(buildCmd.args)}`); | ||||
|  | ||||
|     await Exec.getExecOutput(buildCmd.command, buildCmd.args, { | ||||
|       ignoreReturnCode: true | ||||
|     }).then(res => { | ||||
|       if (res.stderr.length > 0 && res.exitCode != 0) { | ||||
|         throw new Error(`buildx failed with: ${res.stderr.match(/(.*)\s*$/)?.[0]?.trim() ?? 'unknown error'}`); | ||||
|       } | ||||
|     }); | ||||
|   } catch (error) { | ||||
|     core.setFailed(error.message); | ||||
|   } | ||||
| } | ||||
|  | ||||
| async function cleanup(): Promise<void> { | ||||
|   if (stateHelper.tmpDir.length > 0) { | ||||
|     core.startGroup(`Removing temp folder ${stateHelper.tmpDir}`); | ||||
|     fs.rmdirSync(stateHelper.tmpDir, {recursive: true}); | ||||
|     core.endGroup(); | ||||
|   } | ||||
| } | ||||
|     const imageID = toolkit.buildxBuild.resolveImageID(); | ||||
|     const metadata = toolkit.buildxBuild.resolveMetadata(); | ||||
|     const digest = toolkit.buildxBuild.resolveDigest(); | ||||
|  | ||||
| if (!stateHelper.IsPost) { | ||||
|   run(); | ||||
| } else { | ||||
|   cleanup(); | ||||
| } | ||||
|     if (imageID) { | ||||
|       await core.group(`ImageID`, async () => { | ||||
|         core.info(imageID); | ||||
|         core.setOutput('imageid', imageID); | ||||
|       }); | ||||
|     } | ||||
|     if (digest) { | ||||
|       await core.group(`Digest`, async () => { | ||||
|         core.info(digest); | ||||
|         core.setOutput('digest', digest); | ||||
|       }); | ||||
|     } | ||||
|     if (metadata) { | ||||
|       await core.group(`Metadata`, async () => { | ||||
|         const metadatadt = JSON.stringify(metadata, null, 2); | ||||
|         core.info(metadatadt); | ||||
|         core.setOutput('metadata', metadatadt); | ||||
|       }); | ||||
|     } | ||||
|   }, | ||||
|   // post | ||||
|   async () => { | ||||
|     if (stateHelper.tmpDir.length > 0) { | ||||
|       await core.group(`Removing temp folder ${stateHelper.tmpDir}`, async () => { | ||||
|         fs.rmSync(stateHelper.tmpDir, {recursive: true}); | ||||
|       }); | ||||
|     } | ||||
|   } | ||||
| ); | ||||
|   | ||||
| @@ -1,12 +1,7 @@ | ||||
| import * as core from '@actions/core'; | ||||
|  | ||||
| export const IsPost = !!process.env['STATE_isPost']; | ||||
| export const tmpDir = process.env['STATE_tmpDir'] || ''; | ||||
|  | ||||
| export function setTmpDir(tmpDir: string) { | ||||
|   core.saveState('tmpDir', tmpDir); | ||||
| } | ||||
|  | ||||
| if (!IsPost) { | ||||
|   core.saveState('isPost', 'true'); | ||||
| } | ||||
|   | ||||
| @@ -1,3 +1,3 @@ | ||||
| # syntax=docker/dockerfile:1 | ||||
| FROM alpine | ||||
|  | ||||
| RUN echo "Hello world!" | ||||
|   | ||||
| @@ -1,2 +1,3 @@ | ||||
| # syntax=docker/dockerfile:1 | ||||
| FROM busybox | ||||
| RUN cat /etc/hosts | ||||
|   | ||||
| @@ -1,2 +1,3 @@ | ||||
| # syntax=docker/dockerfile:1 | ||||
| FROM alpine | ||||
| RUN cat /proc/self/cgroup | ||||
|   | ||||
							
								
								
									
										19
									
								
								test/go/Dockerfile
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										19
									
								
								test/go/Dockerfile
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,19 @@ | ||||
| # syntax=docker/dockerfile:1 | ||||
|  | ||||
| FROM golang:alpine AS base | ||||
| ENV CGO_ENABLED=0 | ||||
| RUN apk add --no-cache file git | ||||
| WORKDIR /src | ||||
|  | ||||
| FROM base AS build | ||||
| RUN --mount=type=bind,target=/src \ | ||||
|     --mount=type=cache,target=/root/.cache/go-build \ | ||||
|     go build -ldflags "-s -w" -o /usr/bin/app . | ||||
|  | ||||
| FROM scratch AS binary | ||||
| COPY --from=build /usr/bin/app /bin/app | ||||
|  | ||||
| FROM alpine AS image | ||||
| COPY --from=build /usr/bin/app /bin/app | ||||
| EXPOSE 8080 | ||||
| ENTRYPOINT ["/bin/app"] | ||||
							
								
								
									
										3
									
								
								test/go/go.mod
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										3
									
								
								test/go/go.mod
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,3 @@ | ||||
| module github.com/docker/build-push-action/test/go | ||||
|  | ||||
| go 1.18 | ||||
							
								
								
									
										14
									
								
								test/go/main.go
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										14
									
								
								test/go/main.go
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,14 @@ | ||||
| package main | ||||
|  | ||||
| import ( | ||||
| 	"fmt" | ||||
| 	"log" | ||||
| 	"net/http" | ||||
| ) | ||||
|  | ||||
| func main() { | ||||
| 	http.HandleFunc("/", func(w http.ResponseWriter, r *http.Request) { | ||||
| 		fmt.Fprintf(w, "Hello, Go!") | ||||
| 	}) | ||||
| 	log.Fatal(http.ListenAndServe(":8080", nil)) | ||||
| } | ||||
| @@ -1,9 +1,8 @@ | ||||
| # syntax=docker/dockerfile:1 | ||||
| FROM --platform=$BUILDPLATFORM golang:alpine AS build | ||||
|  | ||||
| ARG TARGETPLATFORM | ||||
| ARG BUILDPLATFORM | ||||
| RUN echo "I am running on $BUILDPLATFORM, building for $TARGETPLATFORM" > /log | ||||
|  | ||||
| RUN apk --update --no-cache add \ | ||||
|     shadow \ | ||||
|     sudo \ | ||||
| @@ -17,6 +16,5 @@ RUN sudo chown buildx. /log | ||||
| USER root | ||||
|  | ||||
| FROM alpine | ||||
|  | ||||
| COPY --from=build /log /log | ||||
| RUN ls -al /log | ||||
|   | ||||
| @@ -1,3 +1,4 @@ | ||||
| # syntax=docker/dockerfile:1 | ||||
| FROM --platform=$BUILDPLATFORM golang:alpine AS build | ||||
|  | ||||
| ARG TARGETPLATFORM | ||||
|   | ||||
							
								
								
									
										4
									
								
								test/named-context-base.Dockerfile
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										4
									
								
								test/named-context-base.Dockerfile
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,4 @@ | ||||
| # syntax=docker/dockerfile:1 | ||||
|  | ||||
| FROM debian | ||||
| RUN echo "Hello debian!" | ||||
							
								
								
									
										4
									
								
								test/named-context.Dockerfile
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										4
									
								
								test/named-context.Dockerfile
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,4 @@ | ||||
| # syntax=docker/dockerfile:1 | ||||
|  | ||||
| FROM alpine | ||||
| RUN cat /etc/*release | ||||
							
								
								
									
										9
									
								
								test/nocachefilter.Dockerfile
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										9
									
								
								test/nocachefilter.Dockerfile
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,9 @@ | ||||
| # syntax=docker/dockerfile:1 | ||||
| FROM busybox AS base | ||||
| RUN echo "Hello world!" > /hello | ||||
|  | ||||
| FROM alpine AS build | ||||
| COPY --from=base /hello /hello | ||||
| RUN uname -a | ||||
|  | ||||
| FROM build | ||||
							
								
								
									
										9
									
								
								test/proxy.Dockerfile
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										9
									
								
								test/proxy.Dockerfile
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,9 @@ | ||||
| # syntax=docker/dockerfile:1 | ||||
| FROM alpine | ||||
| RUN apk add --no-cache curl net-tools | ||||
| ARG HTTP_PROXY | ||||
| ARG HTTPS_PROXY | ||||
| RUN printenv HTTP_PROXY | ||||
| RUN printenv HTTPS_PROXY | ||||
| RUN netstat -aptn | ||||
| RUN curl --retry 5 --retry-all-errors --retry-delay 0 --connect-timeout 5 --proxy $HTTP_PROXY -v --insecure --head https://www.google.com | ||||
							
								
								
									
										4
									
								
								test/secret.Dockerfile
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										4
									
								
								test/secret.Dockerfile
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,4 @@ | ||||
| # syntax=docker/dockerfile:1 | ||||
| FROM busybox | ||||
| RUN --mount=type=secret,id=MYSECRET \ | ||||
|   echo "MYSECRET=$(cat /run/secrets/MYSECRET)" | ||||
| @@ -1,2 +1,3 @@ | ||||
| # syntax=docker/dockerfile:1 | ||||
| FROM busybox | ||||
| RUN mount | grep /dev/shm | ||||
|   | ||||
| @@ -1,2 +1,3 @@ | ||||
| # syntax=docker/dockerfile:1 | ||||
| FROM busybox | ||||
| RUN ulimit -a | ||||
|   | ||||
| @@ -1,21 +1,22 @@ | ||||
| { | ||||
|   "compilerOptions": { | ||||
|     "esModuleInterop": true, | ||||
|     "target": "es6", | ||||
|     "module": "commonjs", | ||||
|     "lib": [ | ||||
|       "es6", | ||||
|       "dom" | ||||
|     ], | ||||
|     "strict": true, | ||||
|     "newLine": "lf", | ||||
|     "outDir": "./lib", | ||||
|     "rootDir": "./src", | ||||
|     "strict": true, | ||||
|     "forceConsistentCasingInFileNames": true, | ||||
|     "noImplicitAny": false, | ||||
|     "esModuleInterop": true, | ||||
|     "sourceMap": true | ||||
|     "resolveJsonModule": true, | ||||
|     "useUnknownInCatchVariables": false, | ||||
|   }, | ||||
|   "exclude": [ | ||||
|     "./__mocks__/**/*", | ||||
|     "./__tests__/**/*", | ||||
|     "./lib/**/*", | ||||
|     "node_modules", | ||||
|     "**/*.test.ts" | ||||
|     "jest.config.ts" | ||||
|   ] | ||||
| } | ||||
|   | ||||
		Reference in New Issue
	
	Block a user