From 6febc9e491c7231f95b4130585476d00458ed600 Mon Sep 17 00:00:00 2001
From: pooneyy <85266337+pooneyy@users.noreply.github.com>
Date: Wed, 3 Sep 2025 08:30:23 +0800
Subject: [PATCH 1/2] Create build-docker-image.yml
---
.github/workflows/build-docker-image.yml | 187 +++++++++++++++++++++++
1 file changed, 187 insertions(+)
create mode 100644 .github/workflows/build-docker-image.yml
diff --git a/.github/workflows/build-docker-image.yml b/.github/workflows/build-docker-image.yml
new file mode 100644
index 000000000..b095a879e
--- /dev/null
+++ b/.github/workflows/build-docker-image.yml
@@ -0,0 +1,187 @@
+name: Build Docker image
+
+on:
+ workflow_dispatch:
+ inputs:
+ repo:
+ description: '仓库地址'
+ required: true
+ type: string
+
+ ref:
+ description: '分支名称'
+ required: true
+ type: string
+
+ image_name:
+ description: '镜像名称'
+ required: true
+ type: string
+
+ image_tag:
+ description: '镜像标签'
+ required: false
+ default: 'latest'
+ type: string
+
+ build_target:
+ description: '构建目标'
+ required: false
+ type: string
+
+ architectures:
+ description: '构建架构'
+ required: false
+ type: string
+ default: "linux/amd64, linux/arm64, linux/arm/v7"
+
+ dockerfile:
+ description: 'Dockerfile 在仓库中的路径'
+ required: false
+ type: string
+ default: 'Dockerfile'
+
+permissions:
+ contents: read
+ packages: write
+ id-token: write
+ attestations: write
+
+jobs:
+ publish-docker:
+ name: Build and publish
+ runs-on: ubuntu-latest
+
+ steps:
+ - name: Checkout repository
+ env:
+ REPO_URL: ${{ github.event.inputs.repo }}
+ TARGET_REF: ${{ github.event.inputs.ref }}
+ run: |
+ git clone $REPO_URL .
+ git fetch --tags
+ git checkout $TARGET_REF
+
+ - name: Set up Ruby
+ uses: ruby/setup-ruby@v1
+ with:
+ ruby-version: '3.0'
+ - name: Get license
+ run: |
+ gem install licensee
+ license_result=$(licensee detect --json | jq -r '.licenses[0].spdx_id' 2>&1)
+ status=$?
+ if [ $status -eq 0 ]; then
+ if [ "$license_result" = "null" ] || [ -z "$license_result" ]; then
+ echo "LICENSES=none" >> "$GITHUB_ENV"
+ else
+ echo "LICENSES=$license_result" >> "$GITHUB_ENV"
+ fi
+ else
+ echo "LICENSES=none" >> "$GITHUB_ENV"
+ fi
+
+ - name: Confirm current version
+ run: |
+ git describe --tags --always
+
+ - name: Get lowercase repository owner
+ id: lowercase
+ run: echo "OWNER=$(echo '${{ github.repository_owner }}' | tr '[:upper:]' '[:lower:]')" >> "$GITHUB_ENV"
+
+ - name: Login to GitHub Container Registry
+ uses: docker/login-action@v3
+ with:
+ registry: ghcr.io
+ username: ${{ env.OWNER }}
+ password: ${{ github.token }}
+
+ - name: Set env
+ run: |
+ echo "IMAGE_FULL_NAME=ghcr.io/${{ env.OWNER }}/${{ github.event.inputs.image_name }}" >> $GITHUB_ENV
+ echo "IMAGE_NAME=${{ github.event.inputs.image_name }}" >> $GITHUB_ENV
+ echo "IMAGE_TAG=${{ github.event.inputs.image_tag }}" >> $GITHUB_ENV
+ echo "IMAGE_DESCRIPTION=Built by GitHub Actions, the associated workflow is https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}" >> $GITHUB_ENV
+
+ - name: Extract metadata (tags, labels) for image registry
+ id: meta
+ uses: docker/metadata-action@v5
+ with:
+ images: ${{ env.IMAGE_FULL_NAME }}
+ annotations: |
+ org.opencontainers.image.description=${{ env.IMAGE_DESCRIPTION }}
+ org.opencontainers.image.url=${{ github.event.inputs.repo }}
+ org.opencontainers.image.source=${{ github.event.inputs.repo }}
+ org.opencontainers.image.title=${{ env.IMAGE_NAME }}
+ org.opencontainers.image.version=${{ env.IMAGE_TAG }}
+ ${{ env.LICENSES != 'none' && format('org.opencontainers.image.licenses={0}', env.LICENSES) || '' }}
+ labels: |
+ org.opencontainers.image.description=${{ env.IMAGE_DESCRIPTION }}
+ org.opencontainers.image.url=${{ github.event.inputs.repo }}
+ org.opencontainers.image.source=${{ github.event.inputs.repo }}
+ org.opencontainers.image.title=${{ env.IMAGE_NAME }}
+ org.opencontainers.image.version=${{ env.IMAGE_TAG }}
+ ${{ env.LICENSES != 'none' && format('org.opencontainers.image.licenses={0}', env.LICENSES) || '' }}
+ env:
+ DOCKER_METADATA_ANNOTATIONS_LEVELS: manifest,index
+
+ - name: Set up QEMU
+ uses: docker/setup-qemu-action@v3
+ - name: Set up Docker Buildx
+ uses: docker/setup-buildx-action@v3
+ - name: Build and push
+ id: push
+ uses: docker/build-push-action@v6
+ with:
+ context: .
+ target: ${{ github.event.inputs.build_target }}
+ push: true
+ file: ${{ github.event.inputs.dockerfile }}
+ tags: |
+ ${{ env.IMAGE_FULL_NAME }}:${{ env.IMAGE_TAG }}
+ ${{ github.event.inputs.image_tag != 'latest' && format('{0}:latest', env.IMAGE_FULL_NAME) || '' }}
+ annotations: ${{ steps.meta.outputs.annotations }}
+ labels: ${{ steps.meta.outputs.labels }}
+ cache-from: type=gha
+ cache-to: type=gha,mode=max
+ platforms: ${{ github.event.inputs.architectures }}
+
+ - name: Calculate image size
+ run: |
+ docker manifest inspect ${{ env.IMAGE_FULL_NAME }}:${{ env.IMAGE_TAG }} -v > manifest.json
+ curl -o ./get_image_size.sh -s https://raw.githubusercontent.com/${{ github.repository }}/refs/heads/script/get_image_size.sh
+ chmod +x get_image_size.sh
+
+ - name: Add a summary for the job
+ run: |
+ arch_array=($(echo ${{ github.event.inputs.architectures }} | tr -d '"' | tr ',' '\n' | tr -d ' '))
+ echo "## Build Report" >> $GITHUB_STEP_SUMMARY
+ echo "### Get the image" >> $GITHUB_STEP_SUMMARY
+ echo "" >> $GITHUB_STEP_SUMMARY
+ echo "docker pull ${{ env.IMAGE_FULL_NAME }}:${{ env.IMAGE_TAG }}" >> $GITHUB_STEP_SUMMARY
+ echo "
" >> $GITHUB_STEP_SUMMARY
+ echo "" >> $GITHUB_STEP_SUMMARY
+ echo "Image Url: https://github.com/${{ github.repository }}/pkgs/container/${{ env.IMAGE_NAME }}" >> $GITHUB_STEP_SUMMARY
+ echo "### Image info" >> $GITHUB_STEP_SUMMARY
+ echo "" >> $GITHUB_STEP_SUMMARY
+ echo "| Repository | Reference / Branch / Tag | Push Time |" >> $GITHUB_STEP_SUMMARY
+ echo "|:-:|:-:|:-:|" >> $GITHUB_STEP_SUMMARY
+ echo "| ${{ github.event.inputs.repo }} | [$(git log --pretty=format:"%h" -n 1)](${{ github.event.inputs.repo }}/tree/$(git log --pretty=format:"%H" -n 1)) |$(git log --pretty=format:"%ci" -n 1)|" >> $GITHUB_STEP_SUMMARY
+ echo "" >> $GITHUB_STEP_SUMMARY
+ echo "| Architecture | Image Size |" >> $GITHUB_STEP_SUMMARY
+ echo "|:-:|:-:|" >> $GITHUB_STEP_SUMMARY
+ for arch in "${arch_array[@]}"; do
+ echo "| $arch | $(./get_image_size.sh --arch $arch) |" >> $GITHUB_STEP_SUMMARY
+ done
+ echo "### Verify the image" >> $GITHUB_STEP_SUMMARY
+ echo "You can use github cli to verify the image, run the command:" >> $GITHUB_STEP_SUMMARY
+ echo "" >> $GITHUB_STEP_SUMMARY
+ echo "gh attestation verify oci://${{ env.IMAGE_FULL_NAME }}:${{ env.IMAGE_TAG }} -R ${{ github.repository }}" >> $GITHUB_STEP_SUMMARY
+ echo "
" >> $GITHUB_STEP_SUMMARY
+
+ - name: Generate artifact attestation
+ uses: actions/attest-build-provenance@v3
+ with:
+ subject-name: ${{ env.IMAGE_FULL_NAME }}
+ subject-digest: ${{ steps.push.outputs.digest }}
+ push-to-registry: true
From aa15b9fbf97fceb83915e57e4268e4d2eb194396 Mon Sep 17 00:00:00 2001
From: pooneyy <85266337+pooneyy@users.noreply.github.com>
Date: Wed, 3 Sep 2025 19:29:01 +0800
Subject: [PATCH 2/2] (chroe) Update issue template
---
.github/ISSUE_TEMPLATE/1-Update-Needed.yml | 4 ++-
.github/ISSUE_TEMPLATE/2-Add-New-App.yml | 4 ++-
.github/ISSUE_TEMPLATE/3-Feedback.yml | 35 ++++++++++++++++++++++
3 files changed, 41 insertions(+), 2 deletions(-)
create mode 100644 .github/ISSUE_TEMPLATE/3-Feedback.yml
diff --git a/.github/ISSUE_TEMPLATE/1-Update-Needed.yml b/.github/ISSUE_TEMPLATE/1-Update-Needed.yml
index b43198b08..96f9f2b77 100644
--- a/.github/ISSUE_TEMPLATE/1-Update-Needed.yml
+++ b/.github/ISSUE_TEMPLATE/1-Update-Needed.yml
@@ -2,7 +2,9 @@ name: "⏰应用有新版本了! / App has a new version!"
description: "当前应用商店中的应用有新版本,才可填此表单。 / Fill in this form only if the app in the appstore has a new version."
title: "[需要更新应用] 哪个应用需要更新? / Which app needs an update?"
labels:
- - Update Needed
+ - Update
+Assignees:
+ - pooneyy
body:
- type: markdown
attributes:
diff --git a/.github/ISSUE_TEMPLATE/2-Add-New-App.yml b/.github/ISSUE_TEMPLATE/2-Add-New-App.yml
index 801c60a63..c78793985 100644
--- a/.github/ISSUE_TEMPLATE/2-Add-New-App.yml
+++ b/.github/ISSUE_TEMPLATE/2-Add-New-App.yml
@@ -2,7 +2,9 @@ name: "📝提交新应用 / Add New App"
description: "有当前应用商店未收录的应用,请提交此表单。 / Please submit this form for apps not yet listed in the app store."
title: "[需要增加应用] 需要增加哪个应用? / Which app needs to be added?"
labels:
- - Add New App
+ - Add
+Assignees:
+ - pooneyy
body:
- type: markdown
attributes:
diff --git a/.github/ISSUE_TEMPLATE/3-Feedback.yml b/.github/ISSUE_TEMPLATE/3-Feedback.yml
new file mode 100644
index 000000000..2d30edcb9
--- /dev/null
+++ b/.github/ISSUE_TEMPLATE/3-Feedback.yml
@@ -0,0 +1,35 @@
+name: "📬其它问题反馈 / Feedback"
+description: "提交使用中的相关问题 / Submit issues you encounter while using the app"
+title: "[反馈问题] 哪个应用出现了问题? / Which app has any problem?"
+labels:
+ - Feedback
+Assignees:
+ - pooneyy
+body:
+ - type: markdown
+ attributes:
+ value: |
+ ## Welcome!
+
+ - type: input
+ attributes:
+ label: 应用名称 / App Name
+ placeholder: (e.g. gitlab-jh)
+ validations:
+ required: false
+
+ - type: input
+ attributes:
+ label: 该应用位于本仓库的路径?/ The path of the app in this repository?
+ description:
+ 用于定位出现问题的应用。
+ Used to locate the app with the problem.
+ placeholder: (e.g. apps/gitlab-jh)
+ validations:
+ required: true
+
+ - type: textarea
+ attributes:
+ label: 问题描述 / Details
+ validations:
+ required: true