name: Release on: workflow_dispatch: push: branches: - main - dev pull_request: branches: - main - dev jobs: release: name: Release runs-on: ubuntu-latest permissions: contents: read packages: write steps: - name: Checkout uses: actions/checkout@v4 with: # Make sure the release step uses its own credentials: # https://github.com/cycjimmy/semantic-release-action#private-packages persist-credentials: false fetch-depth: 0 - name: Cache Gradle uses: burrunan/gradle-cache-action@v1 - name: Build env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} run: ./gradlew build clean - name: Setup Node.js uses: actions/setup-node@v4 with: node-version: "lts/*" cache: 'npm' - name: Install dependencies run: npm install - name: Release env: GITHUB_TOKEN: ${{ secrets.REPOSITORY_PUSH_ACCESS }} run: npm exec semantic-release - name: Setup QEMU uses: docker/setup-qemu-action@v3 with: image: tonistiigi/binfmt:latest platforms: all - name: Setup Docker buildx uses: docker/setup-buildx-action@v3 - name: Login to GitHub Container Registry uses: docker/login-action@v3 with: registry: ${{ env.REGISTRY }} username: ${{ github.repository_owner }} password: ${{ secrets.GH_TOKEN }} - name: Extract metadata (tags, labels) for Docker id: metadata uses: docker/metadata-action@v5 with: images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} flavor: | latest=${{ startsWith(github.ref, 'refs/heads/main') }} suffix=-${{ github.sha }} - name: Build and push Docker image id: build uses: docker/build-push-action@v5 with: build-args: GH_TOKEN=${{ secrets.GH_TOKEN }} context: . file: ./Dockerfile platforms: linux/amd64,linux/arm64/v8 cache-to: type=gha,mode=max,ignore-error=true cache-from: type=gha push: true tags: ${{ steps.metadata.outputs.tags }} labels: ${{ steps.metadata.outputs.labels }}