name: Build and push Nginx on almalinux based container images on: push: branches: - almalinux jobs: build: name: Build nginx container images runs-on: ubuntu-latest container: image: ghcr.io/catthehacker/ubuntu:act-latest strategy: matrix: version: ["1.22", "1.24"] steps: - name: Check out repository code uses: actions/checkout@v4 - name: Login to quay.io uses: docker/login-action@v3 with: registry: quay.io username: ${{ vars.QUAY_USERNAME }} password: ${{ secrets.QUAY_SECRET }} # - name: Set up QEMU # uses: docker/setup-qemu-action@v3 - name: Setup Docker buildx uses: docker/setup-buildx-action@v3 - name: Build and push nginx on almalinux base uses: docker/build-push-action@v5 with: # platforms: linux/amd64,linux/arm64 push: true context: . file: Dockerfile.almalinux build-args: | NGINX_VERSION=${{ matrix.version }} tags: | quay.io/sindigilive/nginx:${{ matrix.version }}-almalinux # - name: Scan container image with Trivy # uses: aquasecurity/trivy-action@0.20.0 # with: # image-ref: 'quay.io/sindigilive/nginx:${{ matrix.version }}-almalinux' # format: 'sarif' # output: 'trivy-results.sarif' # build-latest: # name: Build latest nginx almalinux based container images # runs-on: ubuntu-latest # needs: # - build # container: # image: ghcr.io/catthehacker/ubuntu:act-latest # steps: # - name: Check out repository code # uses: actions/checkout@v4 # - name: Login to quay.io # uses: docker/login-action@v3 # with: # registry: quay.io # username: ${{ vars.QUAY_USERNAME }} # password: ${{ secrets.QUAY_SECRET }} # # - name: Set up QEMU # # uses: docker/setup-qemu-action@v3 # - name: Setup Docker buildx # uses: docker/setup-buildx-action@v3 # - name: Build and push latest nginx # uses: docker/build-push-action@v5 # with: # # platforms: linux/amd64,linux/arm64 # push: true # context: . # file: Dockerfile.almalinux # tags: | # quay.io/sindigilive/nginx:almalinux