Skip to content

Publish Docker Image #2

Publish Docker Image

Publish Docker Image #2

name: Publish Docker Image
on:
workflow_dispatch:
inputs:
version:
description: 'Solana version to generate Dockerfile for (e.g., 1.16.0)'
required: true
type: string
jobs:
push_to_registries:
name: Push Docker image to ghcr.io
runs-on: ubuntu-latest
permissions:
packages: write
contents: read
attestations: write
id-token: write
steps:
- name: Check out the repo
uses: actions/checkout@v4
- name: Log in to the Container registry
uses: docker/login-action@65b78e6e13532edd9afa3aa52ac7964289d1a9c1
with:
registry: docker.io
username: ${{ secrets.DOCKER_USERNAME }}
password: ${{ secrets.DOCKER_PASSWORD }}
- name: Extract metadata (tags, labels) for Docker
id: meta
uses: docker/metadata-action@9ec57ed1fcdbf14dcef7dfbe97b2010124a938b7
with:
images: |
docker.io/${{ github.repository }}
- name: Build and push Docker images
id: push
uses: docker/build-push-action@3b5e8027fcad23fda98b2e3ac259d8d67585f671
with:
context: docker/
file: docker/v${{ github.event.inputs.version }}.Dockerfile
push: true
tags: |
${{ steps.meta.outputs.tags }}
docker.io/solanafoundation/solana-verifiable-build:${{ github.event.inputs.version }}
labels: |
${{ steps.meta.outputs.labels }}
org.opencontainers.image.source=https://github.com/${{ github.repository }}
- name: Generate artifact attestation
uses: actions/attest-build-provenance@v1
with:
subject-name: index.docker.io/solanafoundation/solana-verifiable-build
subject-digest: ${{ steps.push.outputs.digest }}
push-to-registry: true