Automate Docker Image Build and Publish #877
Conversation
|
|
|
|
![semgrep-managed-scans[bot]](https://avatars.githubusercontent.com/u/56493103?s=60&v=4){kind=small}
Major improvements: - Add full parameterization (registry, namespace, image name) - Auto-detect registry: temporalio → docker.io, others → ghcr.io - Separate workflow for managing 'latest' tag on release events - Dynamic Docker labels using GITHUB_REPOSITORY variable - Add packages:write permission for GHCR - Remove artifact uploading (no longer needed) Benefits: - Works out-of-box for both upstream and forks - Flexible registry support (Docker Hub, GHCR, any registry) - Clean separation of release vs latest-tag concerns - Proper package association in GitHub Configuration requirements: - DOCKER_USERNAME and DOCKER_PASSWORD secrets needed for Docker Hub - GITHUB_TOKEN automatically provides GHCR access
Address PR temporalio#877 Feedback: Simplify Dockerfile and Workflows
|
Semgrep found 1 No explicit |
bergundy
left a comment
bergundy
left a comment
There was a problem hiding this comment.
Overall LGTM. Didn't have anything major.
|
just realized that this repo uses release candidates and those are not currently published to docker hub. |
|
moving the image build to the manually triggered workflow. |
What was changed
Why?
Make is easier to publish docker images on release.