-
Notifications
You must be signed in to change notification settings - Fork 0
114 lines (98 loc) · 3.68 KB
/
build-and-push.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
# https://web.archive.org/web/20240917152738/https://andrewlock.net/combining-multiple-docker-images-into-a-multi-arch-image/
name: Build and push
on:
workflow_dispatch:
schedule:
# https://crontab.guru/#41_9_*_*_6
- cron: "41 9 * * 6"
permissions:
contents: read
packages: write
# Variables available to all jobs defined in this file
env:
DOCKER_BUILDKIT: 1
# A workflow run is made up of one or more jobs that can run sequentially or in parallel
jobs:
build_intel64:
strategy:
fail-fast: true
name: Build Intel64
runs-on: [ubuntu-latest]
outputs:
sha256: ${{ steps.build.outputs.hash }}
steps:
- name: Create Buildx driver
run: |
docker buildx use multiplatform || docker buildx create --name multiplatform --use 2>/dev/null
- name: Login to GHCR
run: |
echo "${{ secrets.GHCR_TOKEN }}" | docker login ghcr.io -u "${{ secrets.GHCR_USER }}" --password-stdin
- name: Clone AWS Lambda repo
run: |
git clone https://github.com/aws/aws-lambda-base-images.git --branch provided.al2023 --single-branch __aws__
- name: Build
id: build
run: |
set -euxo pipefail
cd __aws__/x86_64/ && \
output="$(
docker buildx build \
-t ghcr.io/northwood-labs/lambda-provided-al2023 \
-f Dockerfile.provided.al2023 \
--platform linux/amd64 \
--output push-by-digest=true,type=image,push=true \
. 2>&1
)"
echo "hash=$(echo "$output" | grep "exporting manifest list" | awk '{print $5}')" >> $GITHUB_OUTPUT
build_arm64:
strategy:
fail-fast: true
name: Build ARM64
runs-on: [ubuntu-latest]
outputs:
sha256: ${{ steps.build.outputs.hash }}
steps:
- name: Create Buildx driver
run: |
docker buildx use multiplatform || docker buildx create --name multiplatform --use 2>/dev/null
- name: Login to GHCR
run: |
echo "${{ secrets.GHCR_TOKEN }}" | docker login ghcr.io -u "${{ secrets.GHCR_USER }}" --password-stdin
- name: Clone AWS Lambda repo
run: |
git clone https://github.com/aws/aws-lambda-base-images.git --branch provided.al2023 --single-branch __aws__
- name: Build
id: build
run: |
set -euxo pipefail
cd __aws__/arm64/ && \
output="$(
docker buildx build \
-t ghcr.io/northwood-labs/lambda-provided-al2023 \
-f Dockerfile.provided.al2023 \
--platform linux/arm64 \
--output push-by-digest=true,type=image,push=true \
. 2>&1
)"
echo "hash=$(echo "$output" | grep "exporting manifest list" | awk '{print $5}')" >> $GITHUB_OUTPUT
merge:
needs: [build_intel64, build_arm64]
strategy:
fail-fast: true
name: Merge into multiplatform
runs-on: [ubuntu-latest]
steps:
- name: Create Buildx driver
run: |
docker buildx use multiplatform || docker buildx create --name multiplatform --use 2>/dev/null
- name: Login to GHCR
run: |
echo "${{ secrets.GHCR_TOKEN }}" | docker login ghcr.io -u "${{ secrets.GHCR_USER }}" --password-stdin
- name: Merge
run: |
set -euxo pipefail
docker buildx imagetools create \
-t ghcr.io/northwood-labs/lambda-provided-al2023:latest \
ghcr.io/northwood-labs/lambda-provided-al2023@${{ needs.build_intel64.outputs.sha256 }} \
ghcr.io/northwood-labs/lambda-provided-al2023@${{ needs.build_arm64.outputs.sha256 }} \
;