@@ -154,6 +154,45 @@ jobs:
154154 tags : ${{ steps.meta-database.outputs.tags }}-${{ github.event.inputs.tag || 'latest' }}, ${{ steps.meta-database.outputs.tags }}-${{ github.event.inputs.release_type }}
155155 labels : ${{ steps.meta-database.outputs.labels }}
156156 platforms : local,linux/amd64,linux/arm64,linux/arm64/v8
157+
158+ build-and-push-image-non_root :
159+ runs-on : ubuntu-latest
160+ permissions :
161+ contents : read
162+ packages : write
163+ steps :
164+ - name : Checkout repository
165+ uses : actions/checkout@v4
166+ with :
167+ ref : ${{ github.event.inputs.commit_hash }}
168+
169+ - name : Log in to the Container registry
170+ uses : docker/login-action@65b78e6e13532edd9afa3aa52ac7964289d1a9c1
171+ with :
172+ registry : ${{ env.REGISTRY }}
173+ username : ${{ github.actor }}
174+ password : ${{ secrets.GITHUB_TOKEN }}
175+
176+ - name : Extract metadata (tags, labels) for non_root Dockerfile
177+ id : meta-non_root
178+ uses : docker/metadata-action@9ec57ed1fcdbf14dcef7dfbe97b2010124a938b7
179+ with :
180+ images : ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}-non_root
181+ # Configure multi platform Docker builds
182+ - name : Set up QEMU
183+ uses : docker/setup-qemu-action@e0e4588fad221d38ee467c0bffd91115366dc0c5
184+ - name : Set up Docker Buildx
185+ uses : docker/setup-buildx-action@edfb0fe6204400c56fbfd3feba3fe9ad1adfa345
186+
187+ - name : Build and push non_root Docker image
188+ uses : docker/build-push-action@f2a1d5e99d037542a71f64918e516c093c6f3fc4
189+ with :
190+ context : .
191+ file : Dockerfile.non_root
192+ push : true
193+ tags : ${{ steps.meta-non_root.outputs.tags }}-${{ github.event.inputs.tag || 'latest' }}, ${{ steps.meta-non_root.outputs.tags }}-${{ github.event.inputs.release_type }}
194+ labels : ${{ steps.meta-non_root.outputs.labels }}
195+ platforms : local,linux/amd64,linux/arm64,linux/arm64/v8
157196
158197 build-and-push-image-spend-logs :
159198 runs-on : ubuntu-latest
0 commit comments