@@ -3,7 +3,7 @@ name: Build and Push Multi-Arch Docker Image
33on :
44 push :
55 tags :
6- - ' v* '
6+ - " v* "
77 workflow_dispatch :
88
99env :
1616 permissions :
1717 contents : read
1818 packages : write
19-
19+
2020 strategy :
2121 fail-fast : false
2222 matrix :
2727 - platform : linux/arm64
2828 runner : ubuntu-24.04-arm64
2929 arch : arm64
30-
30+
3131 steps :
3232 - name : Give GitHub Actions access to @thirdweb-dev/vault
3333 uses : webfactory/ssh-agent@a6f90b1f127823b31d4d4a8d96047790581349bd
@@ -38,18 +38,18 @@ jobs:
3838 uses : actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
3939
4040 - name : Set up Docker Buildx
41- uses : docker/setup-buildx-action@8026d2bc3645ea78b0d2544766a1225eb5691f89
41+ uses : docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2 # @3.10.0
4242
43- - name : Log in to Container Registry
44- uses : docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567
43+ - name : Login to Container Registry
44+ uses : docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # @3.4.0
4545 with :
4646 registry : ${{ env.REGISTRY }}
4747 username : ${{ github.actor }}
4848 password : ${{ secrets.GITHUB_TOKEN }}
4949
5050 - name : Extract metadata
5151 id : meta
52- uses : docker/metadata-action@369eb591f429131d6889c46b94e711f089e6ca96
52+ uses : docker/metadata-action@902fa8ec7d6ecbf8d84d538b9b233a880e428804 # @5.7.0
5353 with :
5454 images : ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
5555 tags : |
6262
6363name : Build and push platform-specific image
6464 id : build
65- uses : docker/build-push-action@48aba3b46d1b1fec4febb7c167d0c247842c735b
65+ uses : docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 # @6.18.0
6666 with :
6767 context : .
6868 file : ./server/Dockerfile
8282 touch "/tmp/digests/${digest#sha256:}"
8383
8484name : Upload digest
85- uses : actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882
85+ uses : actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # @4.6.2
8686 with :
8787 name : digests-${{ matrix.arch }}
8888 path : /tmp/digests/*
@@ -95,28 +95,28 @@ jobs:
9595 permissions :
9696 contents : read
9797 packages : write
98-
98+
9999 steps :
100100 - name : Download digests
101- uses : actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16
101+ uses : actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # @4.3.0
102102 with :
103103 path : /tmp/digests
104104 pattern : digests-*
105105 merge-multiple : true
106106
107107 - name : Set up Docker Buildx
108- uses : docker/setup-buildx-action@8026d2bc3645ea78b0d2544766a1225eb5691f89
108+ uses : docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2 # @3.10.0
109109
110- - name : Log in to Container Registry
111- uses : docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567
110+ - name : Login to Container Registry
111+ uses : docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # @3.4.0
112112 with :
113113 registry : ${{ env.REGISTRY }}
114114 username : ${{ github.actor }}
115115 password : ${{ secrets.GITHUB_TOKEN }}
116116
117117 - name : Extract metadata
118118 id : meta
119- uses : docker/metadata-action@369eb591f429131d6889c46b94e711f089e6ca96
119+ uses : docker/metadata-action@902fa8ec7d6ecbf8d84d538b9b233a880e428804 # @5.7.0
120120 with :
121121 images : ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
122122 tags : |
@@ -132,4 +132,4 @@ jobs:
132132
133133name : Inspect image
134134 run : |
135- docker buildx imagetools inspect ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ steps.meta.outputs.tags }}
135+ docker buildx imagetools inspect ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ steps.meta.outputs.tags }}
0 commit comments