Skip to content
Docker CI

build(deps): bump the dependencies group across 1 directory with 4 updates #98

Sign in to view logs

build(deps): bump the dependencies group across 1 directory with 4 updates

build(deps): bump the dependencies group across 1 directory with 4 updates #98

Workflow file for this run

.github/workflows/docker.yml at 335db7a
name: Docker CI
on:
push:
branches:
- main
pull_request:
branches:
- main
permissions:
contents: read
concurrency:
group: ${{ github.workflow }}-${{ github.head_ref || github.run_id }}
cancel-in-progress: ${{ github.event_name == 'pull_request' }}
jobs:
request:
runs-on: ubuntu-24.04
outputs:
run: ${{ steps.filter.outputs.run }}
steps:
- uses: envoyproxy/toolshed/actions/github/should-run@28425876b3da9328b7b1bd4e8399d599c2460035
id: filter
with:
config: |
paths:
- 'docker/build/**'
- '.github/workflows/docker.yml'
build:
runs-on: ${{ matrix.arch == 'amd64' && 'ubuntu-24.04' || 'ubuntu-24.04-arm' }}
needs: request
if: >-
github.repository_owner == 'envoyproxy'
&& fromJSON(needs.request.outputs.run || 'false')
strategy:
fail-fast: false
matrix:
arch:
- amd64
- arm64
name: build (${{ matrix.arch }})
steps:
- uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3.7.1
- name: Get docker SHA
id: docker-sha
shell: bash
run: |
TAG_SHA=$(git log -1 --pretty=format:"%H" ./docker/build)
echo "sha=${TAG_SHA}" >> $GITHUB_OUTPUT
- name: Build Docker image (debian-${{ matrix.arch }})
run: |
cd docker/build
export OS_FAMILY=linux
export OS_DISTRO=debian
export CONTAINER_SHA=${{ steps.docker-sha.outputs.sha }}
export CONTAINER_TAG=${{ steps.docker-sha.outputs.sha }}
export BUILD_TOOLS_PLATFORMS=${{ matrix.arch == 'amd64' && 'linux/amd64' || 'linux/arm64' }}
export SAVE_OCI=true
export LOAD_IMAGE=true
./push.sh
echo "::group::Docker images"
docker images | grep envoy-build || echo "No envoy-build images found"
echo "::endgroup::"
shell: bash
- name: Upload OCI artifacts
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
with:
name: oci-debian-${{ matrix.arch }}
path: docker/build/oci-output/*.tar
retention-days: 1
if-no-files-found: error
- name: Test Docker image
run: |
IMAGE_TAG="envoyproxy/envoy-build:ci-${{ steps.docker-sha.outputs.sha }}-${{ matrix.arch }}"
echo "Testing main image: $IMAGE_TAG"
echo "Attempting to run container and read build-id..."
if BUILD_ID=$(docker run --rm --entrypoint /bin/cat "$IMAGE_TAG" /.build-id 2>&1); then
echo "Build ID: $BUILD_ID"
EXPECTED_ID="ci-${{ steps.docker-sha.outputs.sha }}"
if [[ "$BUILD_ID" == "$EXPECTED_ID" ]]; then
echo "✓ Build ID is correct"
else
echo "✗ Build ID mismatch: expected '$EXPECTED_ID', got '$BUILD_ID'"
exit 1
fi
else
echo "ERROR: Failed to run container or read build-id"
echo "Docker run output: $BUILD_ID"
echo "Checking if image exists:"
docker images | grep -E "(REPOSITORY|envoy-build.*ci-)"
echo "Trying docker inspect:"
docker image inspect "$IMAGE_TAG" 2>&1 | head -20 || echo "Inspect failed"
exit 1
fi
shell: bash
status:
runs-on: ubuntu-24.04
if: >-
always()
&& github.event_name == 'pull_request'
name: Docker
needs:
- request
- build
steps:
- run: |
if [[ "${{ contains(needs.*.result, 'failure') }}" == "true" || "${{ contains(needs.*.result, 'cancelled') }}" == "true" ]]; then
echo "One or more jobs failed or were cancelled"
exit 1
fi
echo "All required jobs passed or were skipped"