[common] Build Docker Image #224
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: "[common] Build Docker Image" | |
| on: | |
| workflow_dispatch: | |
| inputs: | |
| service_name: | |
| description: 'Name of the service to build' | |
| default: 'rollup-boost' | |
| type: choice | |
| options: | |
| - "rollup-boost" | |
| push: | |
| branches: | |
| - main | |
| schedule: | |
| - cron: "0 1 * * *" | |
| permissions: | |
| contents: write | |
| env: | |
| REGISTRY_IMAGE: flashbots/${{ inputs.service_name || 'rollup-boost' }} | |
| jobs: | |
| build: | |
| name: Publish Docker Image | |
| strategy: | |
| matrix: | |
| config: | |
| - platform: linux/amd64 | |
| runner: warp-ubuntu-latest-x64-16x | |
| - platform: linux/arm64 | |
| runner: warp-ubuntu-latest-arm64-16x | |
| runs-on: ${{ matrix.config.runner }} | |
| steps: | |
| - name: Checkout sources | |
| uses: actions/checkout@v2 | |
| - name: Set env | |
| run: | | |
| platform=${{ matrix.config.platform }} | |
| echo "PLATFORM_PAIR=${platform//\//-}" >> $GITHUB_ENV | |
| - name: Extract metadata (tags, labels) for Docker images | |
| id: meta | |
| uses: docker/metadata-action@v4 | |
| with: | |
| images: ${{ env.REGISTRY_IMAGE }} | |
| - name: Set up QEMU | |
| uses: docker/setup-qemu-action@v3 | |
| - name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@v3 | |
| - name: Login to Docker Hub | |
| uses: docker/login-action@v3 | |
| with: | |
| username: ${{ secrets.FLASHBOTS_DOCKERHUB_USERNAME }} | |
| password: ${{ secrets.FLASHBOTS_DOCKERHUB_TOKEN }} | |
| - name: Build and push to docker hub | |
| id: build | |
| uses: docker/build-push-action@v6 | |
| with: | |
| cache-from: type=gha | |
| cache-to: type=gha,mode=max | |
| context: . | |
| platforms: ${{ matrix.config.platform }} | |
| labels: ${{ steps.meta.outputs.labels }} | |
| build-args: | | |
| SERVICE_NAME=${{ inputs.service_name || 'rollup-boost' }} | |
| outputs: type=registry,name=${{ env.REGISTRY_IMAGE }},push-by-digest=true,name-canonical=true | |
| - name: Export digest | |
| run: | | |
| mkdir -p /tmp/digests | |
| digest="${{ steps.build.outputs.digest }}" | |
| touch "/tmp/digests/${digest#sha256:}" | |
| - name: Upload digest | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: digests-${{ env.PLATFORM_PAIR }} | |
| path: /tmp/digests/* | |
| if-no-files-found: error | |
| retention-days: 1 | |
| merge: | |
| runs-on: warp-ubuntu-latest-x64-16x | |
| permissions: | |
| contents: read | |
| packages: write | |
| needs: | |
| - build | |
| steps: | |
| - name: Download digests | |
| uses: actions/download-artifact@v4 | |
| with: | |
| path: /tmp/digests | |
| pattern: digests-* | |
| merge-multiple: true | |
| - name: Login to Docker Hub | |
| uses: docker/login-action@v3 | |
| with: | |
| username: ${{ secrets.FLASHBOTS_DOCKERHUB_USERNAME }} | |
| password: ${{ secrets.FLASHBOTS_DOCKERHUB_TOKEN }} | |
| - name: Login to GHCR | |
| uses: docker/login-action@v3 | |
| with: | |
| registry: ghcr.io | |
| username: ${{ github.actor }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@v3 | |
| - name: Docker meta | |
| id: meta | |
| uses: docker/metadata-action@v5 | |
| with: | |
| images: ${{ env.REGISTRY_IMAGE }} | |
| tags: | | |
| type=sha | |
| type=schedule,pattern=nightly | |
| - name: Create manifest list and push | |
| working-directory: /tmp/digests | |
| run: | | |
| image=$( | |
| jq -cr '.tags | first' <<< "$DOCKER_METADATA_OUTPUT_JSON" | |
| ) | |
| docker buildx imagetools create -t $image $( | |
| printf '${{ env.REGISTRY_IMAGE }}@sha256:%s ' * | |
| ) | |
| - name: Install regctl | |
| uses: regclient/actions/regctl-installer@main | |
| - name: Push to GHCR | |
| run: | | |
| regctl image copy \ | |
| ${{ env.REGISTRY_IMAGE }}:${{ steps.meta.outputs.version }} \ | |
| ghcr.io/${{ env.REGISTRY_IMAGE }}:${{ steps.meta.outputs.version }} | |
| - name: Inspect image | |
| run: | | |
| docker buildx imagetools inspect ${{ env.REGISTRY_IMAGE }}:${{ steps.meta.outputs.version }} |