Skip to content

Commit

Permalink
Added Github Action to build and push to Docker Hub on deploy
Browse files Browse the repository at this point in the history
  • Loading branch information
bgarlow committed Apr 11, 2024
1 parent 28744b7 commit 549ccb0
Showing 1 changed file with 44 additions and 0 deletions.
44 changes: 44 additions & 0 deletions .github/workflows/scan-publish-docker.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,44 @@
name: Scan and publish Docker image

on:
release:
types: [published]

jobs:
push_to_registry:
name: Push Docker image to Docker Hub
runs-on: ubuntu-latest
steps:
- name: Check out the repo
uses: actions/checkout@v4

- name: Run Snyk to check for vulnerabilities
uses: snyk/actions/node@master
# DEMO: We should fail this deploy due to the critical vuln, but we'll let it go for demo purposes. Monitor will catch it.
continue-on-error: true
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
with:
args: |
--severity-threshold=medium
- name: Log in to Docker Hub
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}

- name: Extract metadata (tags, labels) for Docker
id: meta
uses: docker/metadata-action@9ec57ed1fcdbf14dcef7dfbe97b2010124a938b7
with:
images: bgarlow/oatk

- name: Build and push Docker image
uses: docker/build-push-action@3b5e8027fcad23fda98b2e3ac259d8d67585f671
with:
context: .
file: ./Dockerfile
push: true
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}

0 comments on commit 549ccb0

Please sign in to comment.