name: Build and Push Monorepo Image to GCR on: push: branches: [main] tags: - '**' pull_request: paths: # For now, because this image is only used to use `infra`, we just build for infra changes - 'typescript/infra/**' - 'Dockerfile' - '.dockerignore' concurrency: group: build-push-monorepo-${{ github.ref }} cancel-in-progress: true jobs: check-env: runs-on: ubuntu-latest # assign output from step to job output outputs: gcloud-service-key: ${{ steps.gcloud-service-key.outputs.defined }} steps: - id: gcloud-service-key # assign GCLOUD_SERVICE_KEY to env for access in conditional env: GCLOUD_SERVICE_KEY: ${{ secrets.GCLOUD_SERVICE_KEY }} if: "${{ env.GCLOUD_SERVICE_KEY != '' }}" # runs if GCLOUD_SERVICE_KEY is defined, so we set the output to true run: echo "::set-output name=defined::true" build-and-push-to-gcr: runs-on: ubuntu-latest # uses check-env to determine if secrets.GCLOUD_SERVICE_KEY is defined needs: [check-env] if: needs.check-env.outputs.gcloud-service-key == 'true' steps: - uses: actions/checkout@v3 with: ref: ${{ github.event.pull_request.head.sha || github.sha }} submodules: recursive - name: Generate tag data id: taggen run: | echo "TAG_DATE=$(date +'%Y%m%d-%H%M%S')" >> $GITHUB_OUTPUT echo "TAG_SHA=$(echo '${{ github.sha }}' | cut -b 1-7)" >> $GITHUB_OUTPUT - name: Docker meta id: meta uses: docker/metadata-action@v3 with: # list of Docker images to use as base name for tags images: | gcr.io/abacus-labs-dev/hyperlane-monorepo # generate Docker tags based on the following events/attributes tags: | type=ref,event=branch type=ref,event=pr type=raw,value=${{ steps.taggen.outputs.TAG_SHA }}-${{ steps.taggen.outputs.TAG_DATE }} - name: Set up Docker Buildx uses: docker/setup-buildx-action@v2 - name: Login to GCR uses: docker/login-action@v2 with: registry: gcr.io username: _json_key password: ${{ secrets.GCLOUD_SERVICE_KEY }} - name: Build and push uses: docker/build-push-action@v3 with: context: ./ file: ./Dockerfile push: true tags: ${{ steps.meta.outputs.tags }} labels: ${{ steps.meta.outputs.labels }} cache-from: type=gha cache-to: type=gha,mode=max # To always fetch the latest registry, we use the date as the cache key build-args: | REGISTRY_CACHE=${{ steps.taggen.outputs.TAG_DATE }}