hadolint, k3s and kaniko build added (#5)

Reviewed-on: #5
2023-08-22 17:37:35 +02:00
parent 0e17abd1f7
commit 41fd71d826
4 changed files with 45 additions and 36 deletions
--- a/.gitea/workflows/dev.yaml
+++ b/.gitea/workflows/dev.yaml
@@ -6,22 +6,25 @@ on:
      - main

 jobs:
-  build:
-    runs-on: docker
+  Dockerfile lint:
+    runs-on: k3s
    steps:
      - uses: actions/checkout@v3
-      - name: docker login
-        run: docker login -u $REGISTRY_USER -p $REGISTRY_PASSWORD gitea.sikorski.cloud
-        env:
-          REGISTRY_USER: ${{ secrets.REGISTRY_USER }}
-          REGISTRY_PASSWORD: ${{ secrets.REGISTRY_PASSWORD }}
-      - name: Pull Docker Image for caching
-        run: docker pull gitea.sikorski.cloud/rogersik/devops-helper:development || exit 0
-      - name: Build docker image
-        run: |
-          docker build . \
-            --cache-from gitea.sikorski.cloud/rogersik/devops-helper:development \
-            --file Dockerfile \
-            --tag gitea.sikorski.cloud/rogersik/devops-helper:development
-      - name: Push docker image
-        run: docker push gitea.sikorski.cloud/rogersik/devops-helper --all-tags
+      - uses: hadolint/hadolint-action@v3.1.0
+        with:
+          dockerfile: Dockerfile
+
+  build:
+    runs-on: k3s
+    needs: Dockerfile lint
+    steps:
+      - uses: actions/checkout@v3
+      - name: Kaniko build
+        uses: aevea/action-kaniko@master
+        with:
+          image: rogersik/devops-helper
+          registry: gitea.sikorski.cloud
+          tag: development
+          cache: true
+          username: rogersik
+          password: ${{ secrets.REGISTRY_PASSWORD }}
--- a/.gitea/workflows/main.yaml
+++ b/.gitea/workflows/main.yaml
@@ -7,22 +7,25 @@ on:
    - cron: "0 6 * * SUN"

 jobs:
-  build:
-    runs-on: docker
+  Dockerfile lint:
+    runs-on: k3s
    steps:
      - uses: actions/checkout@v3
-      - name: docker login
-        run: docker login -u $REGISTRY_USER -p $REGISTRY_PASSWORD gitea.sikorski.cloud
-        env:
-          REGISTRY_USER: ${{ secrets.REGISTRY_USER }}
-          REGISTRY_PASSWORD: ${{ secrets.REGISTRY_PASSWORD }}
-      - name: Pull Docker Image for caching
-        run: docker pull gitea.sikorski.cloud/rogersik/devops-helper:development || exit 0
-      - name: Build docker image
-        run: |
-          docker build . \
-            --cache-from gitea.sikorski.cloud/rogersik/devops-helper:development \
-            --file Dockerfile \
-            --tag gitea.sikorski.cloud/rogersik/devops-helper:latest
-      - name: Push docker image
-        run: docker push gitea.sikorski.cloud/rogersik/devops-helper --all-tags
+      - uses: hadolint/hadolint-action@v3.1.0
+        with:
+          dockerfile: Dockerfile
+
+  build:
+    runs-on: k3s
+    needs: Dockerfile lint
+    steps:
+      - uses: actions/checkout@v3
+      - name: Kaniko build
+        uses: aevea/action-kaniko@master
+        with:
+          image: rogersik/devops-helper
+          registry: gitea.sikorski.cloud
+          tag: latest
+          cache: true
+          username: rogersik
+          password: ${{ secrets.REGISTRY_PASSWORD }}
--- a/.hadolint.yaml
+++ b/.hadolint.yaml
@@ -0,0 +1,3 @@
+ignored:
+  - DL3013 # https://github.com/hadolint/hadolint/wiki/DL3013 allow install latest package
+  - DL3018 # https://github.com/hadolint/hadolint/wiki/DL3018 no need to pin specific version
--- a/4
+++ b/4
@@ -1,7 +1,7 @@
 # https://hub.docker.com/_/alpine
-FROM alpine:latest
+FROM alpine:3.18

 RUN apk update && \
  apk add --no-cache nano mc micro rsync ncdu git curl

-ADD ./bin/ /usr/local/bin
+COPY ./bin/ /usr/local/bin