-
Notifications
You must be signed in to change notification settings - Fork 127
49 lines (42 loc) · 1.28 KB
/
image.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
---
name: Create OCI image
on:
pull_request:
branches:
- main
push:
branches:
- main
permissions: read-all
jobs:
publish-image:
runs-on: large-ubuntu-22.04
permissions:
packages: write
id-token: write
steps:
- name: Checkout
uses: >- # v4.1.1
actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
- name: Install Nix
uses: >- # v7
DeterminateSystems/nix-installer-action@5620eb4af6b562c53e4d4628c0b6e4f9d9ae8612
with:
github-token: ${{ secrets.GITHUB_TOKEN }}
# TODO(aaronmondal): Caching is flaky for this workflow.
# See: https://github.com/DeterminateSystems/magic-nix-cache/issues/32
# - name: Cache Nix derivations
# uses: >- # Custom commit, last pinned at 2023-11-17.
# DeterminateSystems/magic-nix-cache-action@a04e6275a6bea232cd04fc6f3cbf20d4cb02a3e1
- name: Test image
run: |
nix run .#local-image-test
- name: Upload image
run: |
nix run .#publish-ghcr
env:
GHCR_REGISTRY: ghcr.io
GHCR_USERNAME: ${{ github.actor }}
GHCR_PASSWORD: ${{ secrets.GITHUB_TOKEN }}
GHCR_IMAGE_NAME: ${{ github.repository }}
if: github.ref == 'refs/heads/main'