Refactor GitHub workflows to simplify image tagging

tudor-timcu · tudor-timcu · commit cf3404ae990c · 2026-03-13T14:52:10.000+02:00
- Updated workflows for building Alpine PHP test and extension images to streamline the tagging process by removing architecture-specific tags.
- Consolidated tags to use a single format: `${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.php_version }}-${{ env.VERSION }}`.
- Removed unnecessary build steps for arm64 architecture across multiple workflows, focusing on amd64 builds.
diff --git a/.github/workflows/build-alpine-php-test-images-nts.yml b/.github/workflows/build-alpine-php-test-images-nts.yml
@@ -37,54 +37,4 @@ jobs:
           push: true
           build-args: |
             PHP_VERSION=${{ matrix.php_version }}
-          tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.php_version }}-amd64-${{ env.VERSION }}
-
-  build-arm64:
-    runs-on: ubuntu-24.04-arm
-    strategy:
-      matrix:
-        php_version: ['7.4','8.0','8.1','8.2','8.3','8.4','8.5']
-      fail-fast: false
-    permissions: { contents: read, packages: write }
-    steps:
-      - uses: actions/checkout@v4
-      - uses: docker/setup-buildx-action@v3
-      - uses: docker/login-action@v3
-        with:
-          registry: ${{ env.REGISTRY }}
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITHUB_TOKEN }}
-      - name: Build & push (arm64)
-        uses: docker/build-push-action@v6
-        with:
-          context: .
-          file: .github/workflows/Dockerfile.alpine-php-test-nts
-          platforms: linux/arm64
-          push: true
-          build-args: |
-            PHP_VERSION=${{ matrix.php_version }}
-          tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.php_version }}-arm64-${{ env.VERSION }}
-
-  publish-manifests:
-    runs-on: ubuntu-24.04
-    needs: [build-amd64, build-arm64]
-    strategy:
-      matrix:
-        php_version: ['7.4','8.0','8.1','8.2','8.3','8.4','8.5']
-      fail-fast: false
-    permissions: { contents: read, packages: write }
-    steps:
-      - uses: docker/setup-buildx-action@v3
-      - uses: docker/login-action@v3
-        with:
-          registry: ${{ env.REGISTRY }}
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITHUB_TOKEN }}
-      - name: Create multi-arch manifest
-        run: |
-          IMAGE=${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
-          V=${{ matrix.php_version }}
-          docker buildx imagetools create \
-            --tag ${IMAGE}:${V}-${{ env.VERSION }} \
-            ${IMAGE}:${V}-amd64-${{ env.VERSION }} \
-            ${IMAGE}:${V}-arm64-${{ env.VERSION }}
+          tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.php_version }}-${{ env.VERSION }}
diff --git a/.github/workflows/build-alpine-php-test-images-zts.yml b/.github/workflows/build-alpine-php-test-images-zts.yml
@@ -37,54 +37,4 @@ jobs:
           push: true
           build-args: |
             PHP_VERSION=${{ matrix.php_version }}
-          tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.php_version }}-amd64-${{ env.VERSION }}
-
-  build-arm64:
-    runs-on: ubuntu-24.04-arm
-    strategy:
-      matrix:
-        php_version: ['7.4','8.0','8.1','8.2','8.3','8.4','8.5']
-      fail-fast: false
-    permissions: { contents: read, packages: write }
-    steps:
-      - uses: actions/checkout@v4
-      - uses: docker/setup-buildx-action@v3
-      - uses: docker/login-action@v3
-        with:
-          registry: ${{ env.REGISTRY }}
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITHUB_TOKEN }}
-      - name: Build & push (arm64)
-        uses: docker/build-push-action@v6
-        with:
-          context: .
-          file: .github/workflows/Dockerfile.alpine-php-test-zts
-          platforms: linux/arm64
-          push: true
-          build-args: |
-            PHP_VERSION=${{ matrix.php_version }}
-          tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.php_version }}-arm64-${{ env.VERSION }}
-
-  publish-manifests:
-    runs-on: ubuntu-24.04
-    needs: [build-amd64, build-arm64]
-    strategy:
-      matrix:
-        php_version: ['7.4','8.0','8.1','8.2','8.3','8.4','8.5']
-      fail-fast: false
-    permissions: { contents: read, packages: write }
-    steps:
-      - uses: docker/setup-buildx-action@v3
-      - uses: docker/login-action@v3
-        with:
-          registry: ${{ env.REGISTRY }}
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITHUB_TOKEN }}
-      - name: Create multi-arch manifest
-        run: |
-          IMAGE=${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
-          V=${{ matrix.php_version }}
-          docker buildx imagetools create \
-            --tag ${IMAGE}:${V}-${{ env.VERSION }} \
-            ${IMAGE}:${V}-amd64-${{ env.VERSION }} \
-            ${IMAGE}:${V}-arm64-${{ env.VERSION }}
+          tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.php_version }}-${{ env.VERSION }}
diff --git a/.github/workflows/build-extension-images-alpine-nts.yml b/.github/workflows/build-extension-images-alpine-nts.yml
@@ -37,54 +37,4 @@ jobs:
           push: true
           build-args: |
             PHP_VERSION=${{ matrix.php_version }}
-          tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.php_version }}-amd64-${{ env.VERSION }}
-
-  build-arm64:
-    runs-on: ubuntu-24.04-arm
-    strategy:
-      matrix:
-        php_version: ['7.4','8.0','8.1','8.2','8.3','8.4','8.5']
-      fail-fast: false
-    permissions: { contents: read, packages: write }
-    steps:
-      - uses: actions/checkout@v4
-      - uses: docker/setup-buildx-action@v3
-      - uses: docker/login-action@v3
-        with:
-          registry: ${{ env.REGISTRY }}
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITHUB_TOKEN }}
-      - name: Build & push (arm64)
-        uses: docker/build-push-action@v6
-        with:
-          context: .
-          file: .github/workflows/Dockerfile.build-extension-alpine-nts
-          platforms: linux/arm64
-          push: true
-          build-args: |
-            PHP_VERSION=${{ matrix.php_version }}
-          tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.php_version }}-arm64-${{ env.VERSION }}
-
-  publish-manifests:
-    runs-on: ubuntu-24.04
-    needs: [build-amd64, build-arm64]
-    strategy:
-      matrix:
-        php_version: ['7.4','8.0','8.1','8.2','8.3','8.4','8.5']
-      fail-fast: false
-    permissions: { contents: read, packages: write }
-    steps:
-      - uses: docker/setup-buildx-action@v3
-      - uses: docker/login-action@v3
-        with:
-          registry: ${{ env.REGISTRY }}
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITHUB_TOKEN }}
-      - name: Create multi-arch manifest
-        run: |
-          IMAGE=${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
-          V=${{ matrix.php_version }}
-          docker buildx imagetools create \
-            --tag ${IMAGE}:${V}-${{ env.VERSION }} \
-            ${IMAGE}:${V}-amd64-${{ env.VERSION }} \
-            ${IMAGE}:${V}-arm64-${{ env.VERSION }}
+          tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.php_version }}-${{ env.VERSION }}
diff --git a/.github/workflows/build-extension-images-alpine-zts.yml b/.github/workflows/build-extension-images-alpine-zts.yml
@@ -37,54 +37,4 @@ jobs:
           push: true
           build-args: |
             PHP_VERSION=${{ matrix.php_version }}
-          tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.php_version }}-amd64-${{ env.VERSION }}
-
-  build-arm64:
-    runs-on: ubuntu-24.04-arm
-    strategy:
-      matrix:
-        php_version: ['7.4','8.0','8.1','8.2','8.3','8.4','8.5']
-      fail-fast: false
-    permissions: { contents: read, packages: write }
-    steps:
-      - uses: actions/checkout@v4
-      - uses: docker/setup-buildx-action@v3
-      - uses: docker/login-action@v3
-        with:
-          registry: ${{ env.REGISTRY }}
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITHUB_TOKEN }}
-      - name: Build & push (arm64)
-        uses: docker/build-push-action@v6
-        with:
-          context: .
-          file: .github/workflows/Dockerfile.build-extension-alpine-zts
-          platforms: linux/arm64
-          push: true
-          build-args: |
-            PHP_VERSION=${{ matrix.php_version }}
-          tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.php_version }}-arm64-${{ env.VERSION }}
-
-  publish-manifests:
-    runs-on: ubuntu-24.04
-    needs: [build-amd64, build-arm64]
-    strategy:
-      matrix:
-        php_version: ['7.4','8.0','8.1','8.2','8.3','8.4','8.5']
-      fail-fast: false
-    permissions: { contents: read, packages: write }
-    steps:
-      - uses: docker/setup-buildx-action@v3
-      - uses: docker/login-action@v3
-        with:
-          registry: ${{ env.REGISTRY }}
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITHUB_TOKEN }}
-      - name: Create multi-arch manifest
-        run: |
-          IMAGE=${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
-          V=${{ matrix.php_version }}
-          docker buildx imagetools create \
-            --tag ${IMAGE}:${V}-${{ env.VERSION }} \
-            ${IMAGE}:${V}-amd64-${{ env.VERSION }} \
-            ${IMAGE}:${V}-arm64-${{ env.VERSION }}
+          tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ matrix.php_version }}-${{ env.VERSION }}
diff --git a/.github/workflows/build-libs-alpine-image.yml b/.github/workflows/build-libs-alpine-image.yml
@@ -34,54 +34,7 @@ jobs:
           platforms: linux/amd64
           push: true
           tags: |
-            ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ env.VERSION }}-amd64
+            ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ env.VERSION }}
+            ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:latest
           cache-from: type=registry,ref=${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:cache-${{ env.VERSION }}-amd64
           cache-to: type=registry,ref=${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:cache-${{ env.VERSION }}-amd64,mode=max
-
-  build-arm64:
-    runs-on: ubuntu-24.04-arm
-    permissions:
-      contents: read
-      packages: write
-    steps:
-      - uses: actions/checkout@v4
-      - uses: docker/setup-buildx-action@v3
-      - uses: docker/login-action@v3
-        with:
-          registry: ${{ env.REGISTRY }}
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITHUB_TOKEN }}
-      - name: Build & push (arm64)
-        uses: docker/build-push-action@v6
-        with:
-          context: .
-          file: .github/workflows/Dockerfile.build-libs-alpine
-          platforms: linux/arm64
-          push: true
-          tags: |
-            ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ env.VERSION }}-arm64
-          cache-from: type=registry,ref=${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:cache-${{ env.VERSION }}-arm64
-          cache-to: type=registry,ref=${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:cache-${{ env.VERSION }}-arm64,mode=max
-
-  publish-manifest:
-    runs-on: ubuntu-24.04
-    needs: [build-amd64, build-arm64]
-    permissions:
-      contents: read
-      packages: write
-    steps:
-      - uses: docker/setup-buildx-action@v3
-      - uses: docker/login-action@v3
-        with:
-          registry: ${{ env.REGISTRY }}
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITHUB_TOKEN }}
-      - name: Create multi-arch manifest
-        run: |
-          IMAGE=${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
-          VERSION=${{ env.VERSION }}
-          docker buildx imagetools create \
-            --tag ${IMAGE}:${VERSION} \
-            --tag ${IMAGE}:latest \
-            ${IMAGE}:${VERSION}-amd64 \
-            ${IMAGE}:${VERSION}-arm64
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -79,14 +79,10 @@ jobs:
           ${{ github.workspace }}/build/aikido-request-processor.so
 
   build_libs_alpine:
-    name: Build Go libs (Alpine/musl) ${{ matrix.arch == '' && 'x86_64' || 'arm' }}
-    runs-on: ubuntu-24.04${{ matrix.arch }}
+    name: Build Go libs (Alpine/musl) x86_64
+    runs-on: ubuntu-24.04
     container:
       image: ghcr.io/aikidosec/firewall-php-build-libs-alpine:v1
-    strategy:
-      matrix:
-        arch: [ '', '-arm' ]
-      fail-fast: false
 
     steps:
     - name: Checkout repository
@@ -252,13 +248,12 @@ jobs:
           ${{ github.workspace }}/tests/*.diff
 
   build_php_extension_alpine_nts:
-    name: Build php ${{ matrix.php_version }} extension Alpine NTS ${{ matrix.arch == '' && 'x86_64' || 'arm' }}
-    runs-on: ubuntu-24.04${{ matrix.arch }}
+    name: Build php ${{ matrix.php_version }} extension Alpine NTS x86_64
+    runs-on: ubuntu-24.04
     container: ghcr.io/aikidosec/firewall-php-build-extension-alpine-nts:${{ matrix.php_version }}-v1
     strategy:
       matrix:
         php_version: ['7.4', '8.0', '8.1', '8.2', '8.3', '8.4', '8.5']
-        arch: [ '', '-arm' ]
       fail-fast: false
 
     steps:
@@ -305,13 +300,12 @@ jobs:
           ${{ github.workspace }}/tests/*.diff
 
   build_php_extension_alpine_zts:
-    name: Build php ${{ matrix.php_version }} extension Alpine ZTS ${{ matrix.arch == '' && 'x86_64' || 'arm' }}
-    runs-on: ubuntu-24.04${{ matrix.arch }}
+    name: Build php ${{ matrix.php_version }} extension Alpine ZTS x86_64
+    runs-on: ubuntu-24.04
     container: ghcr.io/aikidosec/firewall-php-build-extension-alpine-zts:${{ matrix.php_version }}-v1
     strategy:
       matrix:
         php_version: ['7.4', '8.0', '8.1', '8.2', '8.3', '8.4', '8.5']
-        arch: [ '', '-arm' ]
       fail-fast: false
 
     steps:
@@ -552,14 +546,10 @@ jobs:
             ${{ env.AIKIDO_ARTIFACT }}
 
   build_apk:
-    name: Build apk ${{ matrix.arch == '' && 'x86_64' || 'arm' }}
-    runs-on: ubuntu-24.04${{ matrix.arch }}
+    name: Build apk x86_64
+    runs-on: ubuntu-24.04
     container:
       image: alpine:3.21
-    strategy:
-      matrix:
-        arch: ['', '-arm']
-      fail-fast: false
     needs: [ build_libs_alpine, build_php_extension_alpine_nts, build_php_extension_alpine_zts ]
     steps:
       - name: Checkout repository
@@ -1155,8 +1145,8 @@ jobs:
           python3 run_server_tests.py ../tests/server ../tests/testlib --server=${{ matrix.server }} --max-runs=3
 
   test_php_alpine:
-    name: Alpine NTS php-${{ matrix.php_version }} ${{ matrix.server }} ${{ matrix.arch == '' && 'x86_64' || 'arm' }}
-    runs-on: ubuntu-24.04${{ matrix.arch }}
+    name: Alpine NTS php-${{ matrix.php_version }} ${{ matrix.server }} x86_64
+    runs-on: ubuntu-24.04
     container:
       image: ghcr.io/aikidosec/firewall-php-test-alpine-nts:${{ matrix.php_version }}-v1
       options: --privileged
@@ -1165,7 +1155,6 @@ jobs:
       matrix:
         php_version: ['7.4', '8.0', '8.1', '8.2', '8.3', '8.4', '8.5']
         server: ['nginx-php-fpm', 'php-built-in']
-        arch: ['', '-arm']
       fail-fast: false
 
     steps:
@@ -1243,8 +1232,8 @@ jobs:
           python3 run_server_tests.py ../tests/server ../tests/testlib --server=${{ matrix.server }} --max-runs=3
 
   test_php_alpine_zts:
-    name: Alpine ZTS php-${{ matrix.php_version }} ${{ matrix.server }} ${{ matrix.arch == '' && 'x86_64' || 'arm' }}
-    runs-on: ubuntu-24.04${{ matrix.arch }}
+    name: Alpine ZTS php-${{ matrix.php_version }} ${{ matrix.server }} x86_64
+    runs-on: ubuntu-24.04
     container:
       image: ghcr.io/aikidosec/firewall-php-test-alpine-zts:${{ matrix.php_version }}-v1
       options: --privileged
@@ -1253,7 +1242,6 @@ jobs:
       matrix:
         php_version: ['7.4', '8.0', '8.1', '8.2', '8.3', '8.4', '8.5']
         server: ['nginx-php-fpm', 'php-built-in']
-        arch: ['', '-arm']
       fail-fast: false
 
     steps:
