actions/build-push-action
1
0
Fork 0
mirror of https://github.com/docker/build-push-action.git synced 2026-01-13 16:03:06 +08:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

Compare commits

base: actions:14487ce63c7a62a4a324b0bfb37086795e31c6c1
Branches Tags
actions:master
actions:dependabot/npm_and_yarn/docker/actions-toolkit-0.67.0
actions:e2e-s3-cache
actions:dependabot/npm_and_yarn/js-yaml-3.14.2
actions:ci-oci-artifact
actions:dependabot/npm_and_yarn/tmp-0.2.4
actions:dependabot/npm_and_yarn/undici-5.29.0
actions:dependabot/npm_and_yarn/brace-expansion-1.1.12
actions:releases/v5
actions:releases/v4
actions:releases/v3
actions:releases/v2
actions:releases/v1
actions:v6.18.0
actions:v6
actions:v6.17.0
actions:v6.16.0
actions:v6.15.0
actions:v6.14.0
actions:v6.13.0
actions:v6.12.0
actions:v6.11.0
actions:v6.10.0
actions:v6.9.0
actions:v6.8.0
actions:v6.7.0
actions:v6.6.1
actions:v6.6.0
actions:v6.5.0
actions:v6.4.1
actions:v6.4.0
actions:v6.3.0
actions:v6.2.0
actions:v6.1.0
actions:v6.0.2
actions:v6.0.1
actions:v6.0.0
actions:v5.4.0
actions:v5
actions:v5.3.0
actions:v5.2.0
actions:v5.1.0
actions:v5.0.0
actions:v4
actions:v4.2.1
actions:v4.2.0
actions:v4.1.1
actions:v4.1.0
actions:v4.0.0
actions:v3
actions:v3.3.1
actions:v3.3.0
actions:v3.2.0
actions:v3.1.1
actions:v3.1.0
actions:v3.0.0
actions:v2.10.0
actions:v2
actions:v2.9.0
actions:v2.8.0
actions:v2.7.0
actions:v2.6.1
actions:v2.6.0
actions:v2.5.0
actions:v2.4.0
actions:v2.3.0
actions:v2.2.2
actions:v2.2.1
actions:v2.2.0
actions:v2.1.0
actions:v2.0.1
actions:v1.1.2
actions:v1
actions:v2.0.0
actions:v1.1.1
actions:v1.1.0
actions:v1.0.1
actions:v1.0
actions:v1.0.0
..
compare: actions:c566248492c912e39910ac79e2f05a82260233a8
Branches Tags
actions:master
actions:dependabot/npm_and_yarn/docker/actions-toolkit-0.67.0
actions:e2e-s3-cache
actions:dependabot/npm_and_yarn/js-yaml-3.14.2
actions:ci-oci-artifact
actions:dependabot/npm_and_yarn/tmp-0.2.4
actions:dependabot/npm_and_yarn/undici-5.29.0
actions:dependabot/npm_and_yarn/brace-expansion-1.1.12
actions:releases/v5
actions:releases/v4
actions:releases/v3
actions:releases/v2
actions:releases/v1
actions:v6.18.0
actions:v6
actions:v6.17.0
actions:v6.16.0
actions:v6.15.0
actions:v6.14.0
actions:v6.13.0
actions:v6.12.0
actions:v6.11.0
actions:v6.10.0
actions:v6.9.0
actions:v6.8.0
actions:v6.7.0
actions:v6.6.1
actions:v6.6.0
actions:v6.5.0
actions:v6.4.1
actions:v6.4.0
actions:v6.3.0
actions:v6.2.0
actions:v6.1.0
actions:v6.0.2
actions:v6.0.1
actions:v6.0.0
actions:v5.4.0
actions:v5
actions:v5.3.0
actions:v5.2.0
actions:v5.1.0
actions:v5.0.0
actions:v4
actions:v4.2.1
actions:v4.2.0
actions:v4.1.1
actions:v4.1.0
actions:v4.0.0
actions:v3
actions:v3.3.1
actions:v3.3.0
actions:v3.2.0
actions:v3.1.1
actions:v3.1.0
actions:v3.0.0
actions:v2.10.0
actions:v2
actions:v2.9.0
actions:v2.8.0
actions:v2.7.0
actions:v2.6.1
actions:v2.6.0
actions:v2.5.0
actions:v2.4.0
actions:v2.3.0
actions:v2.2.2
actions:v2.2.1
actions:v2.2.0
actions:v2.1.0
actions:v2.0.1
actions:v1.1.2
actions:v1
actions:v2.0.0
actions:v1.1.1
actions:v1.1.0
actions:v1.0.1
actions:v1.0
actions:v1.0.0

No commits in common. "14487ce63c7a62a4a324b0bfb37086795e31c6c1" and "c566248492c912e39910ac79e2f05a82260233a8" have entirely different histories.
14487ce63c ... c566248492

6 changed files with 39 additions and 149 deletions
Show Stats Expand all files Collapse all files

23
.github/workflows/ci.yml vendored
View File

@ -1542,26 +1542,3 @@ jobs:
echo "::error::Should have failed"
exit 1
fi
no-default-attestations:
runs-on: ubuntu-latest
steps:
-
name: Checkout
uses: actions/checkout@v4
with:
path: action
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
with:
version: ${{ inputs.buildx-version || env.BUILDX_VERSION }}
driver-opts: |
image=${{ inputs.buildkit-image || env.BUILDKIT_IMAGE }}
-
name: Build
uses: ./action
with:
file: ./test/Dockerfile
env:
BUILDX_NO_DEFAULT_ATTESTATIONS: 1

17
.github/workflows/pr-assign-author.yml vendored
View File

@ -1,17 +0,0 @@
name: pr-assign-author
permissions:
contents: read
on:
pull_request_target:
types:
- opened
- reopened
jobs:
run:
uses: crazy-max/.github/.github/workflows/pr-assign-author.yml@1b673f36fad86812f538c1df9794904038a23cbf
permissions:
contents: read
pull-requests: write

135
__tests__/context.test.ts
View File

@ -1,4 +1,4 @@
import {afterEach, beforeEach, describe, expect, jest, test} from '@jest/globals';
import {beforeEach, describe, expect, jest, test} from '@jest/globals';
import * as fs from 'fs';
import * as path from 'path';
@ -68,7 +68,6 @@ jest.spyOn(Builder.prototype, 'inspect').mockImplementation(async (): Promise<Bu
});
describe('getArgs', () => {
const originalEnv = process.env;
beforeEach(() => {
process.env = Object.keys(process.env).reduce((object, key) => {
if (!key.startsWith('INPUT_')) {
@ -77,9 +76,6 @@ describe('getArgs', () => {
return object;
}, {});
});
afterEach(() => {
process.env = originalEnv;
});
// prettier-ignore
test.each([
@ -97,8 +93,7 @@ describe('getArgs', () => {
'build',
'--iidfile', imageIDFilePath,
'.'
],
undefined
]
],
[
1,
@ -121,8 +116,7 @@ ccc"`],
'--build-arg', `MULTILINE=aaaa\nbbbb\nccc`,
'--iidfile', imageIDFilePath,
'https://github.com/docker/build-push-action.git#refs/heads/master'
],
undefined
]
],
[
2,
@ -140,8 +134,7 @@ ccc"`],
'--tag', 'name/app:7.4',
'--tag', 'name/app:latest',
'https://github.com/docker/build-push-action.git#refs/heads/master'
],
undefined
]
],
[
3,
@ -161,8 +154,7 @@ ccc"`],
'--label', 'org.opencontainers.image.description=concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit',
'--output', 'type=local,dest=./release-out',
'.'
],
undefined
]
],
[
4,
@ -179,8 +171,7 @@ ccc"`],
'build',
'--platform', 'linux/amd64,linux/arm64',
'.'
],
undefined
]
],
[
5,
@ -196,8 +187,7 @@ ccc"`],
'build',
'--iidfile', imageIDFilePath,
'.'
],
undefined
]
],
[
6,
@ -215,8 +205,7 @@ ccc"`],
'--iidfile', imageIDFilePath,
'--secret', `id=GIT_AUTH_TOKEN,src=${tmpName}`,
'.'
],
undefined
]
],
[
7,
@ -234,8 +223,7 @@ ccc"`],
'--output', '.',
'--secret', `id=GIT_AUTH_TOKEN,src=${tmpName}`,
'https://github.com/docker/build-push-action.git#refs/heads/master'
],
undefined
]
],
[
8,
@ -261,8 +249,7 @@ ccc"`],
'--builder', 'builder-git-context-2',
'--push',
'https://github.com/docker/build-push-action.git#refs/heads/master'
],
undefined
]
],
[
9,
@ -299,8 +286,7 @@ ccc"`],
'--builder', 'builder-git-context-2',
'--push',
'https://github.com/docker/build-push-action.git#refs/heads/master'
],
undefined
]
],
[
10,
@ -337,8 +323,7 @@ ccc`],
'--builder', 'builder-git-context-2',
'--push',
'https://github.com/docker/build-push-action.git#refs/heads/master'
],
undefined
]
],
[
11,
@ -364,8 +349,7 @@ ccc`],
'--network', 'host',
'--push',
'https://github.com/docker/build-push-action.git#refs/heads/master'
],
undefined
]
],
[
12,
@ -385,8 +369,7 @@ ccc`],
'--label', 'org.opencontainers.image.description=Reference implementation of operation "filter results (top-n)"',
'--output', 'type=local,dest=./release-out',
'.'
],
undefined
]
],
[
13,
@ -412,8 +395,7 @@ ccc`],
'--network', 'host',
'--push',
'.'
],
undefined
]
],
[
14,
@ -443,8 +425,7 @@ nproc=3`],
'--ulimit', 'nproc=3',
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
15,
@ -461,8 +442,7 @@ nproc=3`],
'--iidfile', imageIDFilePath,
'--metadata-file', metadataJson,
'https://github.com/docker/build-push-action.git#refs/heads/master:docker'
],
undefined
]
],
[
16,
@ -481,8 +461,7 @@ nproc=3`],
'--secret', `id=GIT_AUTH_TOKEN,src=${tmpName}`,
'--metadata-file', metadataJson,
'https://github.com/docker/build-push-action.git#refs/heads/master:subdir'
],
undefined
]
],
[
17,
@ -500,8 +479,7 @@ nproc=3`],
'--iidfile', imageIDFilePath,
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
18,
@ -519,8 +497,7 @@ nproc=3`],
'--attest', `type=provenance,mode=min,inline-only=true,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789/attempts/1`,
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
19,
@ -539,8 +516,7 @@ nproc=3`],
'--attest', `type=provenance,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789/attempts/1`,
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
20,
@ -559,8 +535,7 @@ nproc=3`],
'--attest', `type=provenance,mode=max,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789/attempts/1`,
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
21,
@ -579,8 +554,7 @@ nproc=3`],
'--attest', 'type=provenance,disabled=true',
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
22,
@ -599,8 +573,7 @@ nproc=3`],
'--attest', 'type=provenance,builder-id=foo',
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
23,
@ -619,8 +592,7 @@ nproc=3`],
"--output", 'type=docker',
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
24,
@ -638,8 +610,7 @@ nproc=3`],
'--load',
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
25,
@ -659,8 +630,7 @@ nproc=3`],
'--load',
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
26,
@ -682,8 +652,7 @@ ANOTHER_SECRET=ANOTHER_SECRET_ENV`]
'--load',
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
27,
@ -704,8 +673,7 @@ ANOTHER_SECRET=ANOTHER_SECRET_ENV`]
'--load',
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
28,
@ -725,8 +693,7 @@ ANOTHER_SECRET=ANOTHER_SECRET_ENV`]
'--attest', `type=provenance,mode=min,inline-only=true,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789/attempts/1`,
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
29,
@ -750,8 +717,7 @@ ANOTHER_SECRET=ANOTHER_SECRET_ENV`]
'--attest', `type=provenance,mode=min,inline-only=true,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789/attempts/1`,
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
30,
@ -771,8 +737,7 @@ ANOTHER_SECRET=ANOTHER_SECRET_ENV`]
'--attest', `type=provenance,mode=min,inline-only=true,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789/attempts/1`,
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
31,
@ -793,8 +758,7 @@ ANOTHER_SECRET=ANOTHER_SECRET_ENV`]
'--attest', `type=sbom,disabled=false`,
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
32,
@ -814,8 +778,7 @@ ANOTHER_SECRET=ANOTHER_SECRET_ENV`]
'--attest', `type=provenance,mode=max,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789/attempts/1`,
'--metadata-file', metadataJson,
'.'
],
undefined
]
],
[
33,
@ -834,37 +797,11 @@ ANOTHER_SECRET=ANOTHER_SECRET_ENV`]
'--attest', `type=provenance,mode=min,builder-id=https://github.com/docker/build-push-action/actions/runs/123456789/attempts/1`,
'--metadata-file', metadataJson,
'.'
],
undefined
],
[
34,
'0.13.1',
new Map<string, string>([
['context', '.'],
['load', 'false'],
['no-cache', 'false'],
['push', 'false'],
['pull', 'false']
]),
[
'build',
'--iidfile', imageIDFilePath,
'--metadata-file', metadataJson,
'.'
],
new Map<string, string>([
['BUILDX_NO_DEFAULT_ATTESTATIONS', '1']
])
]
],
])(
'[%d] given %p with %p as inputs, returns %p',
async (num: number, buildxVersion: string, inputs: Map<string, string>, expected: Array<string>, envs: Map<string, string> | undefined) => {
if (envs) {
envs.forEach((value: string, name: string) => {
process.env[name] = value;
});
}
async (num: number, buildxVersion: string, inputs: Map<string, string>, expected: Array<string>) => {
inputs.forEach((value: string, name: string) => {
setInput(name, value);
});

2
dist/index.js generated vendored
View File

File diff suppressed because one or more lines are too long

2
dist/index.js.map generated vendored
View File

File diff suppressed because one or more lines are too long

9
src/context.ts
View File

@ -245,7 +245,7 @@ async function getAttestArgs(inputs: Inputs, toolkit: Toolkit): Promise<Array<st
if (inputs.provenance) {
args.push('--attest', Build.resolveAttestationAttrs(`type=provenance,${inputs.provenance}`));
provenanceSet = true;
} else if (!hasAttestProvenance && !noDefaultAttestations() && (await toolkit.buildkit.versionSatisfies(inputs.builder, '>=0.11.0')) && !Build.hasDockerExporter(inputs.outputs, inputs.load)) {
} else if (!hasAttestProvenance && (await toolkit.buildkit.versionSatisfies(inputs.builder, '>=0.11.0')) && !Build.hasDockerExporter(inputs.outputs, inputs.load)) {
// if provenance not specified in provenance or attests inputs and BuildKit
// version compatible for attestation, set default provenance. Also needs
// to make sure user doesn't want to explicitly load the image to docker.
@ -277,10 +277,3 @@ async function getAttestArgs(inputs: Inputs, toolkit: Toolkit): Promise<Array<st
return args;
}
function noDefaultAttestations(): boolean {
if (process.env.BUILDX_NO_DEFAULT_ATTESTATIONS) {
return Util.parseBool(process.env.BUILDX_NO_DEFAULT_ATTESTATIONS);
}
return false;
}