Skip to content

Build and publish Docker Image to GitHub Container Registry

Actions
GitHub Action to publish Images to ghcr.io. It is possible to specify Dockerfile name and\or build context
1.1.13
Latest
By TCPShield
Star (1)

Tags

 (2)
deploymentcontainer-ci

GitHub Action to build and publish Docker Images to GitHub Package Registry

Usage examples:

Build and publish Docker Image with a head tag for the develop branch

build-and-publish-head:
    runs-on: ubuntu-latest
    if: github.ref == 'refs/heads/develop' # Running this job only for develop branch

    steps:
        - uses: actions/checkout@v2 # Checking out the repo

        - name: Build and Publish head Docker image
          uses: VaultVulp/[email protected]
          with:
              github-token: ${{ secrets.GITHUB_TOKEN }} # Provide GITHUB_TOKEN to login into the GitHub Packages
              image-name: my-cool-service # Provide Docker image name
              image-tag: head # Provide Docker image tag

Build and publish Docker Image with a latest tag for the master branch with different dockerfile

build-and-publish-latest:
    runs-on: ubuntu-latest
    if: github.ref == 'refs/heads/master' # Running this job only for master branch

    steps:
        - uses: actions/checkout@v2 # Checking out the repo

        - name: Build and Publish latest Docker image
          uses: VaultVulp/[email protected]
          with:
              github-token: ${{ secrets.GITHUB_TOKEN }} # Provide GITHUB_TOKEN to login into the GitHub Packages
              image-name: my-cool-service # Provide only Docker image name, tag will be automatically set to latest
              dockerfile: Dockerfile_server

Build and publish Docker Image with a tag equal to a git tag

build-and-publish-tag:
    runs-on: ubuntu-latest
    if: startsWith(github.ref, 'refs/tags/') # Running this job only for tags

    steps:
        - uses: actions/checkout@v2

        - name: Build and Publish Tag Docker image
          uses: VaultVulp/[email protected]
          with:
              github-token: ${{ secrets.GITHUB_TOKEN }} # Provide GITHUB_TOKEN to login into the GitHub Packages
              image-name: my-cool-service # Provide only Docker image name
              extract-git-tag: true # Provide flag to extract Docker image tag from git reference

Build and publish Docker Image with a differnet build context

build-and-publish-dev:
    runs-on: ubuntu-latest
    if: github.ref == 'refs/heads/develop' # Running this job only for develop branch

    steps:
        - uses: actions/checkout@v2 # Checking out the repo

        - name: Build and Publish head Docker image
          uses: VaultVulp/[email protected]
          with:
              github-token: ${{ secrets.GITHUB_TOKEN }} # Provide GITHUB_TOKEN to login into the GitHub Packages
              image-name: my-cool-service # Provide Docker image name
              build-context: ./dev # Provide path to the folder with the Dockerfile

Pulling the image before building it

pull-and-build-dev:
    runs-on: ubuntu-latest
    if: github.ref == 'refs/heads/develop' # Running this job only for develop branch

    steps:
        - uses: actions/checkout@v2 # Checking out the repo

        - name: Build and Publish head Docker image
          uses: VaultVulp/[email protected]
          with:
              github-token: ${{ secrets.GITHUB_TOKEN }} # Provide GITHUB_TOKEN to login into the GitHub Packages
              image-name: my-cool-service # Provide Docker image name
              pull-image: true # Raise the flag to try to pull image

Passing additional arguments to the docker build command

build-with-custom-args:
    runs-on: ubuntu-latest
    if: github.ref == 'refs/heads/develop' # Running this job only for develop branch

    steps:
        - uses: actions/checkout@v2 # Checking out the repo

        - name: Build with --build-arg(s)
          uses: VaultVulp/[email protected]
          with:
              github-token: ${{ secrets.GITHUB_TOKEN }} # Provide GITHUB_TOKEN to login into the GitHub Packages
              image-name: my-cool-service # Provide Docker image name
              custom-args: --build-arg some=value --build-arg some_other=value # Pass some additional arguments to the docker build command

You will encounter the following log message in your GitHub Actions Pipelines:

WARNING! Using --password via the CLI is insecure. Use --password-stdin.
WARNING! Your password will be stored unencrypted in /github/home/.docker/config.json.
Login Succeeded

I would like to encourage you, that I do not store your secrets, passwords, token, or any other information.

This warning informs you about the fact, that this Action passes your GitHub token via the command line argument:

docker login -u publisher -p ${DOCKER_TOKEN} docker.pkg.github.com

In a non-safe environment, this could raise a security issue, but this is not the case. We are passing a temporary authorization token, which will become useless once the pipeline is complete. It will also require additional code to extract this token from the environment or docker internals, that this Action does not have.

Resources

Build and publish Docker Image to GitHub Container Registry is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.

About

GitHub Action to publish Images to ghcr.io. It is possible to specify Dockerfile name and\or build context
1.1.13
Latest
By TCPShield

Tags

 (2)
deploymentcontainer-ci

Resources

Build and publish Docker Image to GitHub Container Registry is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.