cartsnitch/cartsnitch
12
0
Fork 1
Code Issues 16 Pull Requests Actions Packages Projects Releases Wiki Activity

Add Docker Hub auth to CI to fix 429 rate limit #23

Merged
ghost merged 1 commits from fix/dockerhub-auth-rate-limit into main 2026-03-20 02:15:44 +00:00
Conversation 2 Commits 1 Files Changed 1
+6
ghost commented 2026-03-20 02:05:48 +00:00 (Migrated from github.com)
Copy Link
Copy Source

Summary

  • Adds docker/login-action for Docker Hub before the Docker build step in ci.yml
  • Uses DOCKERHUB_USERNAME / DOCKERHUB_TOKEN org secrets (provisioned via infra#18)
  • Runs unconditionally (both PR and push builds pull base images from Docker Hub)

Problem

The build-and-push job fails with HTTP 429 when pulling nginx:stable-alpine from Docker Hub. Self-hosted runners share an IP and hit anonymous pull rate limits.

Test plan

  • Verify CI passes on this PR (Docker Hub login succeeds with org secrets)
  • Confirm build-and-push no longer 429s on the nginx base image pull

Closes #22

🤖 Generated with Claude Code

## Summary - Adds `docker/login-action` for Docker Hub before the Docker build step in `ci.yml` - Uses `DOCKERHUB_USERNAME` / `DOCKERHUB_TOKEN` org secrets (provisioned via infra#18) - Runs unconditionally (both PR and push builds pull base images from Docker Hub) ## Problem The `build-and-push` job fails with HTTP 429 when pulling `nginx:stable-alpine` from Docker Hub. Self-hosted runners share an IP and hit anonymous pull rate limits. ## Test plan - [ ] Verify CI passes on this PR (Docker Hub login succeeds with org secrets) - [ ] Confirm `build-and-push` no longer 429s on the nginx base image pull Closes #22 🤖 Generated with [Claude Code](https://claude.com/claude-code)
Chris Farhood reviewed 2026-03-20 02:09:32 +00:00
Chris Farhood left a comment
Copy Link
Copy Source

Looks good from the frontend side — the 429 on nginx:stable-alpine pulls has been blocking our CI. Clean change, positioned correctly before the GHCR login step. CI/CD approval is Debbie's and Chip's call.

Looks good from the frontend side — the 429 on `nginx:stable-alpine` pulls has been blocking our CI. Clean change, positioned correctly before the GHCR login step. CI/CD approval is Debbie's and Chip's call.
Chris Farhood approved these changes 2026-03-20 02:15:15 +00:00
Chris Farhood left a comment
Copy Link
Copy Source

Docker Hub login step is correctly placed before the build step. This will handle rate limits on base image pulls (nginx:stable-alpine, node:20-alpine).

Note: this depends on DOCKERHUB_USERNAME and DOCKERHUB_TOKEN being set as org secrets. If those aren't provisioned yet, this won't help — it'll just fail silently (login-action doesn't fail on missing secrets by default). Make sure Debbie provisions the secrets.

Approved.

Docker Hub login step is correctly placed before the build step. This will handle rate limits on base image pulls (nginx:stable-alpine, node:20-alpine). Note: this depends on DOCKERHUB_USERNAME and DOCKERHUB_TOKEN being set as org secrets. If those aren't provisioned yet, this won't help — it'll just fail silently (login-action doesn't fail on missing secrets by default). Make sure Debbie provisions the secrets. Approved.
Sign in to join this conversation.
Reviewers
No Reviewers
Chris Farhood
Labels
Clear labels
bug
Something isn't working
 documentation
Improvements or additions to documentation
 duplicate
This issue or pull request already exists
 enhancement
New feature or request
 good first issue
Good for newcomers
 help wanted
Extra attention is needed
 invalid
This doesn't seem right
 marketing
Marketing content
 question
Further information is requested
 wontfix
This will not be worked on
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
ai-review (AI Review) cs_betty (Barcode Betty) cs_charlie (Checkout Charlie) cpfarhood (Chris Farhood) ci (Continuous Integration [bot]) cs_carl (Coupon Carl) cs_dottie (Deal Dottie) flux (Flux CD) admin (Gitea Admin) cs_martha (Markdown Martha) renovate (Mend Renovate) cs_savannah (Savannah Savings) cs_steve (Stockboy Steve)
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: cartsnitch/cartsnitch#23
Delete Branch "fix/dockerhub-auth-rate-limit"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?