build: enable pushing Docker image in ci-cd-build.yml #133
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI/CD Pipeline | |
| on: | |
| push: | |
| branches: | |
| - main | |
| pull_request: | |
| branches: | |
| - main | |
| env: | |
| UV_CACHE_DIR: /tmp/.uv-cache | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.ref }} | |
| cancel-in-progress: true | |
| jobs: | |
| ci: | |
| name: Continuous Integration (Tests, Linting, Docs) | |
| runs-on: ubuntu-latest | |
| strategy: | |
| matrix: | |
| python-version: [3.11, 3.12, 3.13] | |
| fail-fast: true | |
| timeout-minutes: 20 | |
| steps: | |
| - name: Checkout Repository | |
| uses: actions/checkout@v4.2.2 | |
| - name: Set up Python ${{ matrix.python-version }} | |
| uses: actions/setup-python@v5.3.0 | |
| with: | |
| python-version: ${{ matrix.python-version }} | |
| - name: Restore UV Cache | |
| uses: actions/cache@v4.1.2 | |
| with: | |
| path: ${{ env.UV_CACHE_DIR }} | |
| key: "uv-${{ runner.os }}-${{ hashFiles('uv.lock') }}" | |
| restore-keys: | | |
| uv-${{ runner.os }}-${{ hashFiles('uv.lock') }} | |
| uv-${{ runner.os }} | |
| - name: Set up UV Environment | |
| uses: astral-sh/setup-uv@v3.2.0 | |
| with: | |
| enable-cache: true | |
| cache-dependency-glob: uv.lock | |
| - name: Run Formatting, Linting, Type Checks, and Tests | |
| run: | | |
| uv run ruff format ./ | |
| uv run ruff check --fix ./ | |
| uv run mypy ./ | |
| uv run pytest --cov-report xml | |
| - name: Upload Test Coverage to Codecov | |
| uses: codecov/codecov-action@v4.6.0 | |
| with: | |
| token: '${{ secrets.CODECOV_TOKEN }}' | |
| file: ./coverage.xml | |
| fail_ci_if_error: true | |
| - name: Scan with SonarCloud | |
| uses: SonarSource/sonarcloud-github-action@v3.1.0 | |
| env: | |
| SONAR_TOKEN: '${{ secrets.SONAR_TOKEN }}' | |
| - name: Build Documentation | |
| run: uv run --group=docs make clean html --directory docs/ | |
| - name: Upload documentation to GitHub Pages | |
| uses: peaceiris/actions-gh-pages@v4.0.0 | |
| with: | |
| github_token: ${{ secrets.GITHUB_TOKEN }} | |
| publish_dir: docs/_build/html | |
| - name: Minimize UV Cache | |
| run: uv cache prune --ci | |
| cd: | |
| name: Continuous Deployment (Release, Publish, and Build) | |
| needs: ci | |
| permissions: | |
| id-token: write | |
| contents: write | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout Repository | |
| uses: actions/checkout@v4.2.2 | |
| with: | |
| fetch-depth: 0 | |
| - name: Run Python Semantic Release | |
| id: release | |
| uses: python-semantic-release/python-semantic-release@v9.12.0 | |
| with: | |
| github_token: '${{ secrets.GITHUB_TOKEN }}' | |
| git_committer_name: 'MountainGod2' | |
| git_committer_email: 'admin@reid.ca' | |
| ssh_private_signing_key: '${{ secrets.GIT_COMMIT_SSH_PRIV_KEY }}' | |
| ssh_public_signing_key: '${{ secrets.GIT_COMMIT_SSH_PUB_KEY }}' | |
| - name: Publish to TestPyPI | |
| if: steps.release.outputs.released == 'true' | |
| uses: pypa/gh-action-pypi-publish@v1.10.3 | |
| with: | |
| repository-url: 'https://test.pypi.org/legacy/' | |
| - name: Test Install from TestPyPI | |
| if: steps.release.outputs.released == 'true' | |
| run: | | |
| pip install --index-url https://test.pypi.org/simple/ --extra-index-url https://pypi.org/simple chaturbate-poller | |
| - name: Publish to PyPI | |
| if: steps.release.outputs.released == 'true' | |
| uses: pypa/gh-action-pypi-publish@v1.10.3 | |
| - name: Publish to GitHub Releases | |
| if: steps.release.outputs.released == 'true' | |
| uses: python-semantic-release/publish-action@v9.12.0 | |
| with: | |
| github_token: '${{ secrets.GITHUB_TOKEN }}' | |
| - name: Set up QEMU for Multi-Architecture Builds | |
| if: steps.release.outputs.released == 'true' | |
| uses: docker/setup-qemu-action@v3.2.0 | |
| - name: Set up Docker Buildx for Multi-Platform Builds | |
| if: steps.release.outputs.released == 'true' | |
| uses: docker/setup-buildx-action@v3.7.1 | |
| - name: Generate Docker Image Metadata | |
| id: meta | |
| if: steps.release.outputs.released == 'true' | |
| uses: docker/metadata-action@v5.5.1 | |
| with: | |
| images: ghcr.io/mountaingod2/chaturbate_poller | |
| tags: | | |
| type=ref,event=branch,enable={{is_default_branch}},value=latest | |
| type=semver,pattern={{version}} | |
| type=semver,pattern={{major}}.{{minor}} | |
| type=semver,pattern={{major}} | |
| type=raw,value={{ sha }},prefix=commit- | |
| labels: | | |
| org.opencontainers.image.revision={{ sha }} | |
| org.opencontainers.image.source=https://github.com/${{ github.repository }} | |
| org.opencontainers.image.created={{ now }} | |
| org.opencontainers.image.version={{ version }} | |
| - name: Log in to GitHub Container Registry | |
| if: steps.release.outputs.released == 'true' && github.event_name != 'pull_request' | |
| uses: docker/login-action@v3.3.0 | |
| with: | |
| registry: ghcr.io | |
| username: '${{ github.repository_owner }}' | |
| password: '${{ secrets.GITHUB_TOKEN }}' | |
| - name: Build and Push Docker Image | |
| if: steps.release.outputs.released == 'true' && github.event_name != 'pull_request' | |
| uses: docker/build-push-action@v6.9.0 | |
| with: | |
| push: true | |
| tags: ${{ steps.meta.outputs.tags }} | |
| labels: ${{ steps.meta.outputs.labels }} | |
| platforms: linux/amd64,linux/arm64 | |
| - name: Run Docker Image Tests | |
| if: steps.release.outputs.released == 'true' | |
| run: docker run --rm ghcr.io/mountaingod2/chaturbate_poller:latest --version | |
| summary: | |
| name: Summary Report | |
| needs: [ci, cd] | |
| runs-on: ubuntu-latest | |
| if: always() | |
| steps: | |
| - name: Post Summary | |
| run: | | |
| echo "### CI/CD Summary" >> $GITHUB_STEP_SUMMARY | |
| echo "Continuous Integration and Deployment completed." >> $GITHUB_STEP_SUMMARY | |
| echo "Docker Image built and tested successfully." >> $GITHUB_STEP_SUMMARY |