Skip to content

poetry lock updates (for security fixes) (#84) #66

poetry lock updates (for security fixes) (#84)

poetry lock updates (for security fixes) (#84) #66

name: Push image to to ECR
on:
# pull_request:
# types: [ opened, synchronize, reopened ]
push:
branches:
- 'main'
permissions:
id-token: write
contents: read
jobs:
build:
name: Build Image
runs-on: ubuntu-latest
steps:
- name: Checkoutout code
uses: actions/checkout@v3
- name: Configure AWS credentials
uses: aws-actions/configure-aws-credentials@v4
with:
role-to-assume: ${{ secrets.PUBLIC_ECR_IAM_ROLE_ARN }}
aws-region: us-east-1
- name: Login to Amazon ECR
id: login-ecr
uses: aws-actions/amazon-ecr-login@v2
with:
registry-type: public
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
- name: Build and push image
uses: docker/build-push-action@v5
env:
REGISTRY: ${{ steps.login-ecr.outputs.registry }}
REGISTRY_ALIAS: w0y0d8g6
REPOSITORY: truefoundrycloud/async_processor
# IMAGE_TAG: ${{ github.event.pull_request.head.sha }}
IMAGE_TAG: ${{ github.sha }}
with:
context: .
push: true
tags: ${{ env.REGISTRY }}/${{ env.REGISTRY_ALIAS }}/${{ env.REPOSITORY }}:${{ env.IMAGE_TAG }}
cache-from: type=registry,ref=${{ env.REGISTRY }}/${{ env.REGISTRY_ALIAS }}/${{ env.REPOSITORY }}:buildcache
cache-to: mode=max,image-manifest=true,type=registry,ref=${{ env.REGISTRY }}/${{ env.REGISTRY_ALIAS }}/${{ env.REPOSITORY }}:buildcache