Skip to content
Docker

revert testing setup #544

Sign in to view logs

revert testing setup

revert testing setup #544

Workflow file for this run

.github/workflows/docker.yml at d038a23
# This workflow will build two Docker image and push then to GitHub Packages Container registry:
# - a base image with the dependencies
# - a main image with the application code
name: Docker
on:
workflow_dispatch:
issue_comment:
types: [created]
push:
branches: [main]
paths:
- 'docker/**'
- '.github/workflows/docker.yml'
- 'conda/*.yml'
- 'pyproject.toml'
pull_request:
branches: [main]
paths:
- 'docker/**'
- '.github/workflows/docker.yml'
- 'conda/*.yml'
- 'pyproject.toml'
release:
types: [published]
jobs:
check:
name: Check trigger
runs-on: ubuntu-latest
# Skip issue_comment unless it's /test-docker on a PR
if: >-
github.event_name != 'issue_comment' ||
(github.event.issue.pull_request && startsWith(github.event.comment.body, '/test-docker'))
outputs:
head-sha: ${{ steps.get-sha.outputs.sha }}
permissions:
pull-requests: write
statuses: write
steps:
- name: Check permissions
if: github.event_name == 'issue_comment' || github.event_name == 'workflow_dispatch'
run: |
PERMISSION=$(gh api repos/${{ github.repository }}/collaborators/${{ github.actor }}/permission --jq '.permission')
if [[ "$PERMISSION" != "admin" && "$PERMISSION" != "maintain" ]]; then
echo "::error::Only maintainers or admins can trigger this workflow. Your permission: $PERMISSION"
exit 1
fi
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- name: React to comment
if: github.event_name == 'issue_comment'
run: |
gh api repos/${{ github.repository }}/issues/comments/${{ github.event.comment.id }}/reactions -f content=rocket
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- name: Get PR head SHA
id: get-sha
if: github.event_name == 'issue_comment'
run: |
SHA=$(gh pr view ${{ github.event.issue.number }} --repo ${{ github.repository }} --json headRefOid -q .headRefOid)
echo "sha=$SHA" >> $GITHUB_OUTPUT
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- name: Set pending status on PR
if: github.event_name == 'issue_comment'
run: |
gh api repos/${{ github.repository }}/statuses/${{ steps.get-sha.outputs.sha }} \
-f state=pending \
-f context="Docker Build" \
-f description="Docker build running..." \
-f target_url="${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}"
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
build_docker_images:
needs: check
strategy:
matrix:
RAPIDS_VER:
- "26.02"
name: Build Docker images
runs-on: ubuntu-latest
permissions:
id-token: write
packages: write
contents: read
attestations: write
statuses: write
steps:
- name: Free disk space
run: |
echo "=== Disk space before cleanup ==="
df -h /
sudo rm -rf /usr/share/dotnet /usr/local/lib/android /opt/ghc /opt/hostedtoolcache/CodeQL
sudo rm -rf /usr/local/share/boost
sudo rm -rf /opt/hostedtoolcache
sudo docker image prune --all --force
echo "=== Disk space after cleanup ==="
df -h /
shell: bash
- name: Check out the repo
uses: actions/checkout@v4
with:
ref: ${{ github.event_name == 'issue_comment' && format('refs/pull/{0}/head', github.event.issue.number) || '' }}
- name: Log in to the Container registry
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Extract metadata (tags, labels) for Docker base image
id: meta-base
uses: docker/metadata-action@v5
with:
images: |
ghcr.io/${{ github.repository }}-deps
- name: create yaml file for conda environment
run: |
grep -v -- '- rapids-singlecell' conda/rsc_rapids_${{ matrix.RAPIDS_VER }}_cuda13.yml > docker/rsc_rapids.yml
shell: bash
- name: Build and push Docker base images
id: push-base
uses: docker/build-push-action@v5
with:
context: ./docker/
file: ./docker/Dockerfile.deps
push: ${{ github.event_name == 'release' }}
tags: ${{ steps.meta-base.outputs.tags }}
labels: ${{ steps.meta-base.outputs.labels }}
#cache-from: type=registry,ref=ghcr.io/${{ github.repository }}-deps
- name: Generate artifact attestation for base image
if: github.event_name == 'release'
uses: actions/attest-build-provenance@v1
with:
subject-name: ghcr.io/${{ github.repository }}-deps
subject-digest: ${{ steps.push-base.outputs.digest }}
push-to-registry: true
- name: Extract metadata (tags, labels) for main Docker image
id: meta
uses: docker/metadata-action@v5
with:
images: |
ghcr.io/${{ github.repository }}
- name: Build and push main Docker images
id: push
uses: docker/build-push-action@v5
with:
context: ./docker/
file: ./docker/Dockerfile
push: ${{ github.event_name == 'release' }}
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
#cache-from: type=registry,ref=ghcr.io/${{ github.repository }}
build-contexts: |
rapids-singlecell-deps=docker-image://${{ fromJSON(steps.meta-base.outputs.json).tags[0] }}
- name: Generate artifact attestation for main image
if: github.event_name == 'release'
uses: actions/attest-build-provenance@v1
with:
subject-name: ghcr.io/${{ github.repository }}
subject-digest: ${{ steps.push.outputs.digest }}
push-to-registry: true
- name: list docker images
run: |
docker image ls -a
shell: bash
- name: Set success status on PR
if: success() && github.event_name == 'issue_comment'
run: |
gh api repos/${{ github.repository }}/statuses/${{ needs.check.outputs.head-sha }} \
-f state=success \
-f context="Docker Build" \
-f description="Docker build passed" \
-f target_url="${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}"
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- name: Set failure status on PR
if: failure() && github.event_name == 'issue_comment'
run: |
gh api repos/${{ github.repository }}/statuses/${{ needs.check.outputs.head-sha }} \
-f state=failure \
-f context="Docker Build" \
-f description="Docker build failed" \
-f target_url="${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}"
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}