diff --git a/.github/workflows/roop-build-push-ghcr.yml b/.github/workflows/roop-build-push-ghcr.yml deleted file mode 100644 index c17f8cc..0000000 --- a/.github/workflows/roop-build-push-ghcr.yml +++ /dev/null @@ -1,98 +0,0 @@ ---- -name: roop-build-push-ghcr - -on: - workflow_dispatch: - # repository_dispatch: - # push: - # branches: - # - 'master' - # paths: - # - 'roop/**' - # - '.github/workflows/roop-build-push-ghcr.yml' - # pull_request: - # paths: - # - 'roop/**' - # - '.github/workflows/roop-build-push-ghcr.yml' - # schedule: - # - cron: '0 12 15 * *' - -env: - REGISTRY: ghcr.io - IMAGE_NAME: ghcr.io/${{ github.repository_owner }}/roop - IMAGE_TAG: latest - IMAGE_ARCH: amd64 - REPO_CONTEXT: ./roop - REPO_CONTAINERFILE: ./roop/Dockerfile - -jobs: - buildah: - runs-on: ubuntu-latest - permissions: - actions: write - packages: write - contents: read - security-events: write - steps: - - - name: Cancel previous run in progress - id: cancel-previous-runs - uses: styfle/cancel-workflow-action@0.11.0 - with: - ignore_sha: true - all_but_latest: true - access_token: ${{ secrets.GITHUB_TOKEN }} - - - name: Checkout - id: repo-checkout - uses: actions/checkout@v3 - - - name: Set up QEMU - id: setup-qemu - uses: docker/setup-qemu-action@v2 - - - name: Log in to registry - id: registry-login - uses: redhat-actions/podman-login@v1 - with: - registry: ${{ env.REGISTRY }} - username: ${{ github.repository_owner }} - password: ${{ secrets.GITHUB_TOKEN }} - - - name: Build - id: build-image - uses: redhat-actions/buildah-build@v2 - with: - image: ${{ env.IMAGE_NAME }} - tags: ${{ env.IMAGE_TAG }} - context: ${{ env.REPO_CONTEXT }} - containerfiles: ${{ env.REPO_CONTAINERFILE }} - archs: ${{ env.IMAGE_ARCH }} - - - name: Run Trivy vulnerability scanner - id: trivy-scan - uses: aquasecurity/trivy-action@master - with: - scan-type: 'image' - image-ref: ${{ env.IMAGE_NAME }}:${{ env.IMAGE_TAG }} - format: 'sarif' - output: 'trivy-results.sarif' - severity: 'HIGH,CRITICAL' - vuln-type: 'os,library' - hide-progress: true - ignore-unfixed: true - exit-code: '0' - - - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@v2 - if: always() - with: - sarif_file: 'trivy-results.sarif' - - - name: Push - id: push-to-ghcr - uses: redhat-actions/push-to-registry@v2 - with: - image: ${{ steps.build-image.outputs.image }} - tags: ${{ steps.build-image.outputs.tags }} - registry: ${{ env.REGISTRY }} diff --git a/README.md b/README.md index 998a304..f8bc2c9 100644 --- a/README.md +++ b/README.md @@ -12,8 +12,12 @@ ![debian-stable-slim-build-push-ghcr](https://github.com/mmguero/docker/workflows/debian-stable-slim-build-push-ghcr/badge.svg) +![fakemachine-build-push-ghcr](https://github.com/mmguero/docker/workflows/fakemachine-build-push-ghcr/badge.svg) + ![fetch-build-push-ghcr](https://github.com/mmguero/docker/workflows/fetch-build-push-ghcr/badge.svg) +![filepond-build-push-ghcr](https://github.com/mmguero/docker/workflows/filepond-build-push-ghcr/badge.svg) + ![firefox-build-push-ghcr](https://github.com/mmguero/docker/workflows/firefox-build-push-ghcr/badge.svg) ![forgejo-root-build-push-ghcr](https://github.com/mmguero/docker/workflows/forgejo-root-build-push-ghcr/badge.svg) @@ -71,12 +75,14 @@ [espejo](https://github.com/mmguero/espejo) ![espejo-build-push-ghcr](https://github.com/mmguero/espejo/workflows/espejo-build-push-ghcr/badge.svg) +[goStatic](https://github.com/mmguero/gostatic) ![gostatic-build-push-ghcr](https://github.com/mmguero/gostatic/workflows/gostatic-build-push-ghcr/badge.svg) + [mirotalk](https://github.com/mmguero/mirotalk) ![mirotalk-build-push-ghcr](https://github.com/mmguero/mirotalk/workflows/mirotalk-build-push-ghcr/badge.svg) [monkeyplug](https://github.com/mmguero/monkeyplug) ![monkeyplug-build-push-ghcr](https://github.com/mmguero/monkeyplug/workflows/monkeyplug-build-push-ghcr/badge.svg) -[montag](https://github.com/mmguero/montag) ![montag-build-push-ghcr](https://github.com/mmguero/montag/workflows/montag-build-push-ghcr/badge.svg) ![montag-build-push-arm32v7-ghcr](https://github.com/mmguero/montag/workflows/montag-build-push-arm32v7-ghcr/badge.svg) +[montag](https://github.com/mmguero/montag) ![montag-build-push-ghcr](https://github.com/mmguero/montag/workflows/montag-build-push-ghcr/badge.svg) [nginx-ldap](https://github.com/mmguero/nginx-ldap) ![nginx-ldap-build-push-ghcr](https://github.com/mmguero/nginx-ldap/workflows/nginx-ldap-build-push-ghcr/badge.svg) -[zeek-docker](https://github.com/mmguero/zeek-docker) ![zeek-build-push-ghcr](https://github.com/mmguero/zeek-docker/workflows/zeek-build-push-ghcr/badge.svg) +[zeek-docker](https://github.com/mmguero/zeek-docker) ![zeek-build-push-latest-ghcr](https://github.com/mmguero/zeek-docker/workflows/zeek-build-push-latest-ghcr/badge.svg)