diff --git a/.github/workflows/image.yml b/.github/workflows/image.yml
index 48e4ec0..afae27c 100644
--- a/.github/workflows/image.yml
+++ b/.github/workflows/image.yml
@@ -1,34 +1,75 @@
-name: Image
+name: Vib Build
 
 on:
   push:
-    branches: [ "main" ]
+    branches:
+      - 'main'
+    tags:
+      - '*'
+  workflow_dispatch:
   pull_request:
 
 env:
-  REGISTRY_USER: ${{ github.actor }}
-  REGISTRY_PASSWORD: ${{ secrets.GITHUB_TOKEN }}
+  BUILDX_NO_DEFAULT_ATTESTATIONS: 1
+
+permissions:
+    contents: write # Allow actions to create release
+    packages: write # Allow pushing images to GHCR
 
 jobs:
-  image:
+  build:
     runs-on: ubuntu-latest
+
     steps:
     - uses: actions/checkout@v4
 
     - uses: vanilla-os/vib-gh-action@v0.7.0
-      with:
-        recipe: 'recipe.yml'
 
     - uses: actions/upload-artifact@v4
       with:
-          name: Containerfile
-          path: Containerfile
+         name: Containerfile
+         path: Containerfile
 
-    - name: Build image
-      run: docker image build -f Containerfile --tag ghcr.io/vanilla-os/differ:main .
-
-    - name: Publish image
-      if: github.repository == 'Vanilla-OS/Differ' && github.ref == 'refs/heads/main'
+    - name: Generate image name
       run: |
-        docker login ghcr.io -u ${{ env.REGISTRY_USER }} -p ${{ env.REGISTRY_PASSWORD }}
-        docker image push "ghcr.io/vanilla-os/differ:main"
+        REPO_OWNER_LOWERCASE="$(echo ${{ github.repository_owner }} | tr '[:upper:]' '[:lower:]')"
+        echo "REPO_OWNER_LOWERCASE=$REPO_OWNER_LOWERCASE" >> "$GITHUB_ENV"
+        echo "IMAGE_NAME=ghcr.io/$REPO_OWNER_LOWERCASE/differ" >> "$GITHUB_ENV"
+
+    - name: Docker meta
+      id: docker_meta
+      uses: docker/metadata-action@v5
+      with:
+        images: |
+          ${{ env. IMAGE_NAME }}
+        tags: |
+          type=semver,pattern={{version}}
+          type=semver,pattern={{major}}.{{minor}}
+          type=semver,pattern={{raw}}
+          type=semver,pattern=v{{major}}
+          type=ref,event=branch
+
+    - name: Set up Docker Buildx
+      uses: docker/setup-buildx-action@v3
+
+    - name: Login to GitHub Package Registry
+      uses: docker/login-action@v3
+      if: ${{ github.event_name != 'pull_request' }}
+      with:
+        registry: ghcr.io
+        username: ${{ github.repository_owner }}
+        password: ${{ secrets.GITHUB_TOKEN }}
+
+    - name: Build and Push the Docker image
+      id: push
+      uses: docker/build-push-action@v5
+      with:
+        context: .
+        file: Containerfile
+        push: ${{ github.event_name != 'pull_request' }}
+        tags: ${{ steps.docker_meta.outputs.tags }}
+        labels: ${{ steps.docker_meta.outputs.labels }}
+        cache-from: type=gha
+        cache-to: type=gha,mode=max
+        platforms: linux/amd64
+        provenance: false