Merge pull request #3499 from jupyterhub/vuln-scan-hub #1116
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This is a GitHub workflow defining a set of jobs with a set of steps. | |
| # ref: https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions | |
| # | |
| name: Test docker multiarch build | |
| # Trigger the workflow's on all PRs and pushes so that other contributors can | |
| # run tests in their own forks. Avoid triggering these tests on changes to | |
| # changes not influencing the images. | |
| on: | |
| pull_request: | |
| paths: | |
| - "images/**" | |
| - "chartpress.yaml" | |
| - ".github/workflows/test-docker-build.yaml" | |
| push: | |
| paths: | |
| - "images/**" | |
| - "chartpress.yaml" | |
| - ".github/workflows/test-docker-build.yaml" | |
| branches-ignore: | |
| - "dependabot/**" | |
| - "pre-commit-ci-update-config" | |
| - "update-*" | |
| - "vuln-scan-*" | |
| workflow_dispatch: | |
| jobs: | |
| # This is a quick test to check the arm64 docker images based on: | |
| # - https://github.com/docker/build-push-action/blob/v2.3.0/docs/advanced/local-registry.md | |
| # - https://github.com/docker/build-push-action/blob/v2.3.0/docs/advanced/multi-platform.md | |
| build_images: | |
| runs-on: ubuntu-22.04 | |
| steps: | |
| - uses: actions/checkout@v4 | |
| with: | |
| # chartpress requires git history to set chart version and image tags | |
| # correctly | |
| fetch-depth: 0 | |
| - uses: actions/setup-python@v5 | |
| with: | |
| python-version: "3.11" | |
| - name: Install chartpress | |
| run: pip install chartpress | |
| - name: Set up QEMU (for docker buildx) | |
| uses: docker/setup-qemu-action@v3 | |
| - name: Set up Docker Buildx (for chartpress multi-arch builds) | |
| uses: docker/setup-buildx-action@v3 | |
| - name: Build a multiple architecture Docker image | |
| run: >- | |
| chartpress | |
| --builder docker-buildx | |
| --platform linux/amd64 --platform linux/arm64 |