Merge branch 'master' into chore/default-prysm-build-go

Author: barnabasbusa

.github/actions/deploy/action.yml

@@ -41,6 +41,10 @@ inputs:
     type: string
     default: go
     required: false
+  harbor_registry:
+    description: Harbor registry to push the images to
+    type: string
+    default: ''
   # Secrets
   DOCKER_USERNAME:
     required: true
@@ -50,6 +54,10 @@ inputs:
     required: true
   GOPROXY:
     required: false
+  HARBOR_USERNAME:
+    required: true
+  HARBOR_PASSWORD:
+    required: true
 
 outputs:
   git_commit_hash:
@@ -102,6 +110,13 @@ runs:
     with:
       username: ${{ inputs.DOCKER_USERNAME }}
       password: ${{ inputs.DOCKER_PASSWORD }}
+  - name: Login to harbor registry
+    if: ${{ inputs.harbor_registry != '' }}
+    uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
+    with:
+      registry: ${{ inputs.harbor_registry }}
+      username: ${{ inputs.HARBOR_USERNAME }}
+      password: ${{ inputs.HARBOR_PASSWORD }}
   ########################
   # Build script case
   #######################
@@ -154,7 +169,11 @@ runs:
       # two tags;
       #   - $target_tag
       #   - $target_tag-commit
-      tags: ${{ inputs.target_repository }}:${{ inputs.target_tag }}-${{ steps.git_commit_hash.outputs.git_commit_hash }},${{ inputs.target_repository }}:${{ inputs.target_tag }}
+      tags: |
+        ${{ inputs.target_repository }}:${{ inputs.target_tag }}-${{ steps.git_commit_hash.outputs.git_commit_hash }}
+        ${{ inputs.target_repository }}:${{ inputs.target_tag }}
+        ${{ inputs.harbor_registry != '' && format('{0}/{1}:{2}-{3}', inputs.harbor_registry, inputs.target_repository, inputs.target_tag, steps.git_commit_hash.outputs.git_commit_hash) || '' }}
+        ${{ inputs.harbor_registry != '' && format('{0}/{1}:{2}', inputs.harbor_registry, inputs.target_repository, inputs.target_tag) || '' }}
       push: true
       platforms: ${{ inputs.platform }}
       build-args: ${{ inputs.build_args }}
@@ -171,4 +190,4 @@ runs:
       tags:
         ${{ inputs.target_repository }}:${{ inputs.target_tag }}
         ${{ inputs.target_repository }}:${{ inputs.target_tag }}-${{ steps.git_commit_hash.outputs.git_commit_hash }}
-      EOF
+      EOF

.github/actions/manifest/action.yml

@@ -92,46 +92,9 @@ runs:
     with:
       username: ${{ inputs.DOCKER_USERNAME }}
       password: ${{ inputs.DOCKER_PASSWORD }}
-  - name: Create and push manifest images
+
+  - name: Create and push manifest images to dockerhub
     shell: bash
     run: |
       docker buildx imagetools create --dry-run -t ${{ inputs.target_repository }}:${{ inputs.target_tag }} -t ${{ inputs.target_repository }}:${{ inputs.target_tag }}-${{ inputs.git_commit_hash }} ${{ steps.generate_images_list.outputs.images }}
       docker buildx imagetools create -t ${{ inputs.target_repository }}:${{ inputs.target_tag }} -t ${{ inputs.target_repository }}:${{ inputs.target_tag }}-${{ inputs.git_commit_hash }} ${{ steps.generate_images_list.outputs.images }}
-
-  - name: Login to harbor registry
-    if: ${{ inputs.harbor_registry != '' }}
-    uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
-    with:
-      registry: ${{ inputs.harbor_registry }}
-      username: ${{ inputs.HARBOR_USERNAME }}
-      password: ${{ inputs.HARBOR_PASSWORD }}
-
-  - name: Create and push manifest images for other registry
-    if: ${{ inputs.harbor_registry != '' }}
-    shell: bash
-    run: |
-      images="${{ steps.generate_images_list.outputs.tags }}"
-      for image in $images; do
-        target_tag=$(echo "${{ inputs.harbor_registry }}$image" | sed -E 's/^\s*.*:\/\///g')
-        echo "Checking if $image is available on Docker Hub..."
-        retries=10
-        delay=30
-        until [[ $retries -le 0 ]]; do
-          if docker manifest inspect $image > /dev/null 2>&1; then
-            echo "$image is available on Docker Hub."
-            echo "Copying $image to $target_tag"
-            docker buildx imagetools create --dry-run -t $target_tag $image
-            docker buildx imagetools create -t $target_tag $image
-            break
-          else
-            echo "$image is not yet available on Docker Hub. Retrying in $delay seconds..."
-            sleep $delay
-            ((retries--))
-          fi
-        done
-        if [[ $retries -le 0 ]]; then
-          echo "Failed to find $image on Docker Hub after multiple attempts."
-          echo "Skipping $image"
-          continue
-        fi
-      done

.github/workflows/build-push-armiarma.yml

@@ -66,6 +66,9 @@ jobs:
           DOCKER_PASSWORD: "${{ secrets.DOCKER_PASSWORD }}"
           MACOS_PASSWORD: "${{ secrets.MACOS_PASSWORD }}"
           GOPROXY: "${{ vars.GOPROXY }}"
+          HARBOR_USERNAME: "${{ vars.HARBOR_USERNAME }}"
+          HARBOR_PASSWORD: "${{ secrets.HARBOR_PASSWORD }}"
+          harbor_registry: ${{ vars.HARBOR_REGISTRY }}
 
       # This step captures the git commit hash from the deploy action for job output, which can then be
       # used by the manifest job. This is done to handle scenarios where there is a commit to the remote

.github/workflows/build-push-beacon-metrics-gazer.yml

@@ -68,6 +68,9 @@ jobs:
           DOCKER_PASSWORD: "${{ secrets.DOCKER_PASSWORD }}"
           MACOS_PASSWORD: "${{ secrets.MACOS_PASSWORD }}"
           GOPROXY: "${{ vars.GOPROXY }}"
+          HARBOR_USERNAME: "${{ vars.HARBOR_USERNAME }}"
+          HARBOR_PASSWORD: "${{ secrets.HARBOR_PASSWORD }}"
+          harbor_registry: ${{ vars.HARBOR_REGISTRY }}
 
       # This step captures the git commit hash from the deploy action for job output
       - name: Set job output

.github/workflows/build-push-besu.yml

@@ -65,6 +65,9 @@ jobs:
           DOCKER_PASSWORD: "${{ secrets.DOCKER_PASSWORD }}"
           MACOS_PASSWORD: "${{ secrets.MACOS_PASSWORD }}"
           GOPROXY: "${{ vars.GOPROXY }}"
+          HARBOR_USERNAME: "${{ vars.HARBOR_USERNAME }}"
+          HARBOR_PASSWORD: "${{ secrets.HARBOR_PASSWORD }}"
+          harbor_registry: ${{ vars.HARBOR_REGISTRY }}
 
       # This step captures the git commit hash from the deploy action for job output
       - name: Set job output

.github/workflows/build-push-consensus-monitor.yml

@@ -64,6 +64,9 @@ jobs:
           DOCKER_PASSWORD: "${{ secrets.DOCKER_PASSWORD }}"
           MACOS_PASSWORD: "${{ secrets.MACOS_PASSWORD }}"
           GOPROXY: "${{ vars.GOPROXY }}"
+          HARBOR_USERNAME: "${{ vars.HARBOR_USERNAME }}"
+          HARBOR_PASSWORD: "${{ secrets.HARBOR_PASSWORD }}"
+          harbor_registry: ${{ vars.HARBOR_REGISTRY }}
 
       # This step captures the git commit hash from the deploy action for job output
       - name: Set job output

.github/workflows/build-push-eleel.yml

@@ -63,6 +63,9 @@ jobs:
 
           DOCKER_USERNAME: "${{ vars.DOCKER_USERNAME }}"
           DOCKER_PASSWORD: "${{ secrets.DOCKER_PASSWORD }}"
+          HARBOR_USERNAME: "${{ vars.HARBOR_USERNAME }}"
+          HARBOR_PASSWORD: "${{ secrets.HARBOR_PASSWORD }}"
+          harbor_registry: ${{ vars.HARBOR_REGISTRY }}
 
       # This step captures the git commit hash from the deploy action for job output
       - name: Set job output

.github/workflows/build-push-erigon.yml

@@ -64,6 +64,9 @@ jobs:
           DOCKER_PASSWORD: "${{ secrets.DOCKER_PASSWORD }}"
           MACOS_PASSWORD: "${{ secrets.MACOS_PASSWORD }}"
           GOPROXY: "${{ vars.GOPROXY }}"
+          HARBOR_USERNAME: "${{ vars.HARBOR_USERNAME }}"
+          HARBOR_PASSWORD: "${{ secrets.HARBOR_PASSWORD }}"
+          harbor_registry: ${{ vars.HARBOR_REGISTRY }}
 
       # This step captures the git commit hash from the deploy action for job output
       - name: Set job output

.github/workflows/build-push-eth-das-guardian.yml

@@ -0,0 +1,109 @@
+name: Build eth-das-guardian docker image
+
+on:
+  workflow_dispatch:
+    inputs:
+      repository:
+        description: The source eth-das-guardian repository to build from
+        default: probe-lab/eth-das-guardian
+        type: string
+        required: true
+      ref:
+        description: The branch, tag or SHA to checkout and build from
+        default: main
+        type: string
+        required: true
+      docker_tag:
+        description: Override target docker tag (defaults to the above source ref if left blank)
+        type: string
+        required: false
+
+jobs:
+  prepare:
+    runs-on: ubuntu-latest
+    outputs:
+      platforms: ${{ steps.setup.outputs.platforms }}
+      target_tag: ${{ steps.tag.outputs.docker_tag }}
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - name: Prepare Matrix
+        id: setup
+        uses: ./.github/actions/prepare
+        with:
+          client: 'eth-das-guardian'
+      - name: Generate target tag
+        id: tag
+        uses: ./.github/actions/docker-tag
+        with:
+          input: ${{ inputs.docker_tag || inputs.ref }}
+  deploy:
+    needs:
+      - prepare
+    runs-on: ${{ matrix.runner }}
+    continue-on-error: true
+    strategy:
+      matrix:
+        include: ${{fromJson(needs.prepare.outputs.platforms)}}
+    outputs:
+      git_commit_hash: ${{ steps.set_output.outputs.git_commit_hash }}
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: ./.github/actions/install-deps
+        with:
+          repository: ${{ inputs.repository }}
+      - uses: ./.github/actions/deploy
+        id: deploy
+        with:
+          source_repository: ${{ inputs.repository }}
+          source_ref: ${{ inputs.ref }}
+          target_tag: ${{ needs.prepare.outputs.target_tag }}-${{ matrix.slug }}
+          target_repository: ethpandaops/eth-das-guardian
+          platform: ${{ matrix.platform }}
+
+          DOCKER_USERNAME: "${{ vars.DOCKER_USERNAME }}"
+          DOCKER_PASSWORD: "${{ secrets.DOCKER_PASSWORD }}"
+          MACOS_PASSWORD: "${{ secrets.MACOS_PASSWORD }}"
+          GOPROXY: "${{ vars.GOPROXY }}"
+          HARBOR_USERNAME: "${{ vars.HARBOR_USERNAME }}"
+          HARBOR_PASSWORD: "${{ secrets.HARBOR_PASSWORD }}"
+          harbor_registry: ${{ vars.HARBOR_REGISTRY }}
+
+      # This step captures the git commit hash from the deploy action for job output
+      - name: Set job output
+        id: set_output
+        run: echo "git_commit_hash=${{ steps.deploy.outputs.git_commit_hash }}" >> $GITHUB_OUTPUT
+        shell: bash
+  manifest:
+    needs:
+      - prepare
+      - deploy
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: ./.github/actions/manifest
+        with:
+          source_repository: ${{ inputs.repository }}
+          source_ref: ${{ inputs.ref }}
+          target_tag: ${{ needs.prepare.outputs.target_tag }}
+          target_repository: ethpandaops/eth-das-guardian
+          platforms: ${{ needs.prepare.outputs.platforms }}
+          harbor_registry: ${{ vars.HARBOR_REGISTRY }}
+          HARBOR_USERNAME: "${{ vars.HARBOR_USERNAME }}"
+          HARBOR_PASSWORD: "${{ secrets.HARBOR_PASSWORD }}"
+          git_commit_hash: ${{ needs.deploy.outputs.git_commit_hash }}
+          DOCKER_USERNAME: "${{ vars.DOCKER_USERNAME }}"
+          DOCKER_PASSWORD: "${{ secrets.DOCKER_PASSWORD }}"
+  notify:
+    name: Discord Notification
+    runs-on: ubuntu-latest
+    needs:
+      - prepare
+      - deploy
+      - manifest
+    if: failure()
+    steps:
+      - name: Notify
+        uses: nobrayner/discord-webhook@1766a33bf571acdcc0678f00da4fb83aad01ebc7 # v1
+        with:
+          github-token: ${{ secrets.github_token }}
+          discord-webhook: ${{ secrets.DISCORD_WEBHOOK }}

.github/workflows/build-push-ethereumjs.yml

@@ -65,6 +65,9 @@ jobs:
           DOCKER_PASSWORD: "${{ secrets.DOCKER_PASSWORD }}"
           MACOS_PASSWORD: "${{ secrets.MACOS_PASSWORD }}"
           GOPROXY: "${{ vars.GOPROXY }}"
+          HARBOR_USERNAME: "${{ vars.HARBOR_USERNAME }}"
+          HARBOR_PASSWORD: "${{ secrets.HARBOR_PASSWORD }}"
+          harbor_registry: ${{ vars.HARBOR_REGISTRY }}
 
       # This step captures the git commit hash from the deploy action for job output
       - name: Set job output