aiidalab · danielhollas · May 9, 2024 · Mar 20, 2024 · Mar 20, 2024 · Mar 20, 2024
diff --git a/.github/actions/create-dev-env/action.yml b/.github/actions/create-dev-env/action.yml
diff --git a/.github/actions/load-image/action.yml b/.github/actions/load-image/action.yml
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -5,7 +5,7 @@ updates:
     - package-ecosystem: github-actions
       directory: /
       schedule:
-          interval: daily
+          interval: monthly
       groups:
           gha-dependencies:
               patterns:

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -0,0 +1,77 @@
+---
+name: Build images and upload them to ghcr.io
+
+env:
+    BUILDKIT_PROGRESS: plain
+
+on:
+    workflow_call:
+        inputs:
+            runsOn:
+                description: GitHub Actions Runner image
+                required: true
+                type: string
+            platforms:
+                description: Target platforms for the build (linux/amd64 and/or linux/arm64)
+                required: true
+                type: string
+        outputs:
+            images:
+                description: Images identified by digests
+                value: ${{ jobs.build.outputs.images }}
+
+jobs:
+    build:
+        name: ${{ inputs.platforms }}
+        runs-on: ${{ inputs.runsOn }}
+        timeout-minutes: 120
+
+        outputs:
+            images: ${{ steps.bake_metadata.outputs.images }}
+
+        # Make sure we fail if any command in a piped command sequence fails
+        defaults:
+            run:
+                shell: bash -e -o pipefail {0}
+
+        steps:
+
+            - name: Checkout Repo ⚡️
+              uses: actions/checkout@v4
+
+            - name: Set up QEMU
+              if: ${{ inputs.platforms != 'linux/amd64' }}
+              uses: docker/setup-qemu-action@v3
+
+            - name: Set up Docker Buildx
+              uses: docker/setup-buildx-action@v3
+
+            - name: Login to GitHub Container Registry 🔑
+              uses: docker/login-action@v3
+              with:
+                  registry: ghcr.io
+                  username: ${{ github.actor }}
+                  password: ${{ secrets.GITHUB_TOKEN }}
+
+            - name: Build and upload to ghcr.io 📤
+              id: build-upload
+              uses: docker/bake-action@v4
+              with:
+                  push: true
+                  # Using provenance to disable default attestation so it will build only desired images:
+                  # https://github.com/orgs/community/discussions/45969
+                  provenance: false
+                  set: |
+                      *.platform=${{ inputs.platforms }}
+                      *.output=type=registry,push-by-digest=true,name-canonical=true
+                  files: |
+                      docker-bake.hcl
+                      build.json
+                      .github/workflows/env.hcl
-                  set: |
-                      *.platform=${{ inputs.platforms }}
-                      *.output=type=registry,push-by-digest=true,name-canonical=true
-                  files: |
-                      docker-bake.hcl
-                      build.json
-                      .github/workflows/env.hcl
+            set: |
+                *.platform=linux/amd64
+                *.output=type=registry,push-by-digest=true,name-canonical=true
+                *.cache-from=type=local,src=/tmp/.buildx-cache
+                *.cache-to=type=local,mode=max,dest=/tmp/.buildx-cache-new
+            files: |
+                docker-bake.hcl
+                build.json
+
+      # Temp fix for issue of fast size grow in local caching:
+      # https://github.com/docker/build-push-action/issues/252
+      # https://github.com/moby/buildkit/issues/1896
+      - name: Move cache
+        run: |
+          rm -rf /tmp/.buildx-cache
+          mv /tmp/.buildx-cache-new /tmp/.buildx-cache
-                  set: |
-                      *.platform=${{ inputs.platforms }}
-                      *.output=type=registry,push-by-digest=true,name-canonical=true
-                  files: |
-                      docker-bake.hcl
-                      build.json
-                      .github/workflows/env.hcl
+            set: |
+                *.platform=linux/amd64
+                *.output=type=registry,push-by-digest=true,name-canonical=true
+                *.cache-from=type=local,src=/tmp/.buildx-cache
+                *.cache-to=type=local,mode=max,dest=/tmp/.buildx-cache-new
+            files: |
+                docker-bake.hcl
+                build.json
+
+      # Temp fix for issue of fast size grow in local caching:
+      # https://github.com/docker/build-push-action/issues/252
+      # https://github.com/moby/buildkit/issues/1896
+      - name: Move cache
+        run: |
+          rm -rf /tmp/.buildx-cache
+          mv /tmp/.buildx-cache-new /tmp/.buildx-cache
+
+            - name: Set output variables
+              id: bake_metadata
+              run: |
+                  .github/workflows/extract-image-names.sh | tee -a "${GITHUB_OUTPUT}"
+              env:
+                  BAKE_METADATA: ${{ steps.build-upload.outputs.metadata }}
diff --git a/.github/workflows/docker-build-test-upload.yml b/.github/workflows/docker-build-test-upload.yml
diff --git a/.github/workflows/docker-merge-tags.yml b/.github/workflows/docker-merge-tags.yml
diff --git a/.github/workflows/docker-push.yml b/.github/workflows/docker-push.yml