name: CI on: push: branches: [main, dev] pull_request: branches: [main, dev] workflow_dispatch: inputs: ref: description: "Branch or ref to run CI against" required: false default: "main" jobs: lint-typecheck: name: Lint & Typecheck runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - uses: pnpm/action-setup@v4 with: version: '9.15.4' - uses: actions/setup-node@v4 with: node-version: 20 cache: pnpm - name: Install dependencies run: pnpm install --frozen-lockfile - name: Typecheck run: pnpm typecheck - name: Lint run: pnpm lint test: name: Test runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - uses: pnpm/action-setup@v4 with: version: '9.15.4' - uses: actions/setup-node@v4 with: node-version: 20 cache: pnpm - name: Install dependencies run: pnpm install --frozen-lockfile - name: Run tests run: pnpm test docker: name: Build & Push Docker Image runs-on: ubuntu-latest needs: [lint-typecheck, test] permissions: contents: read packages: write id-token: write steps: - uses: actions/checkout@v4 - name: Generate image tag id: version run: | if [ "${{ github.event_name }}" = "pull_request" ]; then TAG="pr-${{ github.event.pull_request.number }}-${GITHUB_SHA::7}" else TAG="$(date -u +%Y.%m.%d)-${GITHUB_SHA::7}" fi echo "tag=$TAG" >> "$GITHUB_OUTPUT" echo "Image tag: $TAG" - name: Set up Docker Buildx uses: docker/setup-buildx-action@v3 - name: Log in to GitHub Container Registry uses: docker/login-action@v3 with: registry: ghcr.io username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} - name: Build and push Web image uses: docker/build-push-action@v6 with: context: . file: Dockerfile push: true tags: | ghcr.io/groombook/web:${{ steps.version.outputs.tag }} ${{ github.ref == 'refs/heads/main' && 'ghcr.io/groombook/web:latest' || '' }} cache-from: type=gha cache-to: type=gha,mode=max