Skip to content

chore(deps): update dependency rancher/confd to v0.16.7 #61

chore(deps): update dependency rancher/confd to v0.16.7

chore(deps): update dependency rancher/confd to v0.16.7 #61

Workflow file for this run

name: Workflow for rke-tools
on:
push:
branches:
- master
tags:
- '*'
pull_request:
branches:
- master
env:
IMAGE: rancher/rke-tools
jobs:
ci:
permissions:
contents: read
runs-on: ubuntu-latest
timeout-minutes: 10
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Setup Go
uses: actions/setup-go@v5
with:
go-version-file: 'go.mod'
- name: Run golangci-lint
uses: golangci/golangci-lint-action@v6
with:
version: v1.58
args: --disable-all -E revive
- name: Build
run: |
./scripts/ci
- name: Upload rke-etcd-backup artifact
if: github.event_name == 'push' && github.ref_type == 'tag'
uses: actions/upload-artifact@v4
with:
name: rke-etcd-backup-${{ github.run_number }}-${{ github.run_attempt }}
path: bin/rke-etcd-backup
if-no-files-found: error
retention-days: 1
build-and-push:
permissions:
contents: read
id-token: write
runs-on: ubuntu-latest
timeout-minutes: 30
needs: ci
if: github.event_name == 'push' && github.ref_type == 'tag'
strategy:
fail-fast: true
matrix:
arch: [amd64, arm64]
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Download rke-etcd-backup artifact
uses: actions/download-artifact@v4
with:
name: rke-etcd-backup-${{ github.run_number }}-${{ github.run_attempt }}
path: .
- name: Fix permissions
run: |
chmod 755 rke-etcd-backup
- name: Docker meta
id: meta
uses: docker/metadata-action@v5
with:
images: ${{ env.IMAGE }}
flavor: |
latest=false
- name: Set up QEMU
uses: docker/setup-qemu-action@v3
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
- name: Load Secrets from Vault
uses: rancher-eio/read-vault-secrets@main
with:
secrets: |
secret/data/github/repo/${{ github.repository }}/dockerhub/rancher/credentials username | DOCKER_USERNAME ;
secret/data/github/repo/${{ github.repository }}/dockerhub/rancher/credentials password | DOCKER_PASSWORD
- name: Login to Docker Hub
uses: docker/login-action@v3
with:
username: ${{ env.DOCKER_USERNAME }}
password: ${{ env.DOCKER_PASSWORD }}
- name: Build and push Docker image
id: build
uses: docker/build-push-action@v6
with:
context: .
file: package/Dockerfile
push: true
platforms: linux/${{ matrix.arch }}
tags: ${{ env.IMAGE }}:${{ github.ref_name }}-linux-${{ matrix.arch }}
build-args: ARCH=${{ matrix.arch }}
labels: "${{ steps.meta.outputs.labels }}"
- name: Export digest
run: |
mkdir -p /tmp/digests
digest="${{ steps.build.outputs.digest }}"
touch "/tmp/digests/${digest#sha256:}"
- name: Upload digest
uses: actions/upload-artifact@v4
with:
name: "digests-linux-${{ matrix.arch }}"
path: /tmp/digests/*
if-no-files-found: error
retention-days: 1
overwrite: true
merge:
runs-on: ubuntu-latest
needs: build-and-push
permissions:
contents: read
id-token: write
timeout-minutes: 10
if: github.event_name == 'push' && github.ref_type == 'tag'
steps:
- name: Download digests
uses: actions/download-artifact@v4
with:
path: /tmp/digests
pattern: digests-*
merge-multiple: true
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
- name: Docker meta
id: meta
uses: docker/metadata-action@v5
with:
images: ${{ env.IMAGE }}
flavor: |
latest=false
- name: Load Secrets from Vault
uses: rancher-eio/read-vault-secrets@main
with:
secrets: |
secret/data/github/repo/${{ github.repository }}/dockerhub/rancher/credentials username | DOCKER_USERNAME ;
secret/data/github/repo/${{ github.repository }}/dockerhub/rancher/credentials password | DOCKER_PASSWORD
- name: Login to Docker Hub
uses: docker/login-action@v3
with:
username: ${{ env.DOCKER_USERNAME }}
password: ${{ env.DOCKER_PASSWORD }}
- name: Create manifest list and push
working-directory: /tmp/digests
run: |
docker buildx imagetools create $(jq -cr '.tags | map("-t " + .) | join(" ")' <<< "$DOCKER_METADATA_OUTPUT_JSON") \
$(printf '${{ env.IMAGE }}@sha256:%s ' *)
- name: Inspect image
run: |
docker buildx imagetools inspect ${{ env.IMAGE }}:${{ steps.meta.outputs.version }}