workflows: build and publish container images

Author: yhabteab

.github/workflows/container-image.yml

@@ -0,0 +1,34 @@
+name: Container Image
+
+on:
+  push:
+    branches:
+      - master
+  pull_request: {}
+  release:
+    types:
+      - published
+
+jobs:
+  container-image:
+    # Since the base container image GHA requires the following permissions, each job that
+    # uses it must also specify them. Otherwise, this will fail with (The nested job '...'
+    # is requesting 'id-token: write', but is only allowed 'id-token: none').
+    permissions:
+      contents: read
+      packages: write
+      attestations: write
+      id-token: write
+
+    name: Container Image
+    uses: icinga/github-actions/.github/workflows/container-image.yml@main
+    with:
+      # The variable ${{ github.repository }} is not suitable for container image names in our case because
+      # they must be lowercase, and our organization name is Icinga. Since our repository names are already
+      # lowercase, no additional modifications are necessary.
+      image_name: icinga/${{ github.event.repository.name }}
+      documentation_url: https://icinga.com/docs/icinga2
+    secrets:
+      ghcr_token: ${{ secrets.GITHUB_TOKEN }}
+      dockerhub_username: ${{ secrets.DOCKERHUB_USERNAME }}
+      dockerhub_token: ${{ secrets.DOCKERHUB_TOKEN }}