docker · crazy-max · Dec 1, 2025 · Dec 1, 2025
diff --git a/.github/workflows/.test.yml b/.github/workflows/.test.yml
@@ -49,6 +49,21 @@ jobs:
           username: ${{ secrets.AWS_ACCESS_KEY_ID }}
           password: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
 
+  build-aws-single-outputs:
+    runs-on: ubuntu-24.04
+    needs:
+      - build-aws-single
+    steps:
+      -
+        name: Builder outputs
+        uses: actions/github-script@v8
+        env:
+          INPUT_BUILDER-OUTPUTS: ${{ toJSON(needs.build-aws-single.outputs) }}
+        with:
+          script: |
+            const builderOutputs = JSON.parse(core.getInput('builder-outputs'));
+            core.info(JSON.stringify(builderOutputs, null, 2));
+
   build-aws:
     uses: ./.github/workflows/build.yml
     permissions:
@@ -85,6 +100,21 @@ jobs:
           username: ${{ secrets.AWS_ACCESS_KEY_ID }}
           password: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
 
+  build-aws-outputs:
+    runs-on: ubuntu-24.04
+    needs:
+      - build-aws
+    steps:
+      -
+        name: Builder outputs
+        uses: actions/github-script@v8
+        env:
+          INPUT_BUILDER-OUTPUTS: ${{ toJSON(needs.build-aws.outputs) }}
+        with:
+          script: |
+            const builderOutputs = JSON.parse(core.getInput('builder-outputs'));
+            core.info(JSON.stringify(builderOutputs, null, 2));
+
   build-ghcr:
     uses: ./.github/workflows/build.yml
     permissions:
@@ -119,6 +149,21 @@ jobs:
           username: ${{ github.actor }}
           password: ${{ secrets.GITHUB_TOKEN }}
 
+  build-ghcr-outputs:
+    runs-on: ubuntu-24.04
+    needs:
+      - build-ghcr
+    steps:
+      -
+        name: Builder outputs
+        uses: actions/github-script@v8
+        env:
+          INPUT_BUILDER-OUTPUTS: ${{ toJSON(needs.build-ghcr.outputs) }}
+        with:
+          script: |
+            const builderOutputs = JSON.parse(core.getInput('builder-outputs'));
+            core.info(JSON.stringify(builderOutputs, null, 2));
+
   build-dockerhub-stage:
     uses: ./.github/workflows/build.yml
     permissions:
@@ -152,6 +197,21 @@ jobs:
           username: ${{ vars.DOCKERHUB_STAGE_USERNAME }}
           password: ${{ secrets.DOCKERHUB_STAGE_TOKEN }}
 
+  build-dockerhub-stage-outputs:
+    runs-on: ubuntu-24.04
+    needs:
+      - build-dockerhub-stage
+    steps:
+      -
+        name: Builder outputs
+        uses: actions/github-script@v8
+        env:
+          INPUT_BUILDER-OUTPUTS: ${{ toJSON(needs.build-dockerhub-stage.outputs) }}
+        with:
+          script: |
+            const builderOutputs = JSON.parse(core.getInput('builder-outputs'));
+            core.info(JSON.stringify(builderOutputs, null, 2));
+
   build-dockerhub-stage-oidc:
     uses: ./.github/workflows/build.yml
     permissions:
@@ -186,6 +246,21 @@ jobs:
         - registry: registry-1-stage.docker.io
           username: docker:cdeb5882-30b7-4076-be92-bfdceb258e9c
 
+  build-dockerhub-stage-oidc-outputs:
+    runs-on: ubuntu-24.04
+    needs:
+      - build-dockerhub-stage-oidc
+    steps:
+      -
+        name: Builder outputs
+        uses: actions/github-script@v8
+        env:
+          INPUT_BUILDER-OUTPUTS: ${{ toJSON(needs.build-dockerhub-stage-oidc.outputs) }}
+        with:
+          script: |
+            const builderOutputs = JSON.parse(core.getInput('builder-outputs'));
+            core.info(JSON.stringify(builderOutputs, null, 2));
+
   build-ghcr-and-aws:
     uses: ./.github/workflows/build.yml
     permissions:
@@ -228,6 +303,21 @@ jobs:
           username: ${{ secrets.AWS_ACCESS_KEY_ID }}
           password: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
 
+  build-ghcr-and-aws-outputs:
+    runs-on: ubuntu-24.04
+    needs:
+      - build-ghcr-and-aws
+    steps:
+      -
+        name: Builder outputs
+        uses: actions/github-script@v8
+        env:
+          INPUT_BUILDER-OUTPUTS: ${{ toJSON(needs.build-ghcr-and-aws.outputs) }}
+        with:
+          script: |
+            const builderOutputs = JSON.parse(core.getInput('builder-outputs'));
+            core.info(JSON.stringify(builderOutputs, null, 2));
+
   build-local:
     uses: ./.github/workflows/build.yml
     permissions:
@@ -249,6 +339,21 @@ jobs:
     with:
       builder-outputs: ${{ toJSON(needs.build-local.outputs) }}
 
+  build-local-outputs:
+    runs-on: ubuntu-24.04
+    needs:
+      - build-local
+    steps:
+      -
+        name: Builder outputs
+        uses: actions/github-script@v8
+        env:
+          INPUT_BUILDER-OUTPUTS: ${{ toJSON(needs.local.outputs) }}
+        with:
+          script: |
+            const builderOutputs = JSON.parse(core.getInput('builder-outputs'));
+            core.info(JSON.stringify(builderOutputs, null, 2));
+
   build-local-single:
     uses: ./.github/workflows/build.yml
     permissions:
@@ -269,6 +374,21 @@ jobs:
     with:
       builder-outputs: ${{ toJSON(needs.build-local-single.outputs) }}
 
+  build-local-single-outputs:
+    runs-on: ubuntu-24.04
+    needs:
+      - build-local-single
+    steps:
+      -
+        name: Builder outputs
+        uses: actions/github-script@v8
+        env:
+          INPUT_BUILDER-OUTPUTS: ${{ toJSON(needs.build-local-single.outputs) }}
+        with:
+          script: |
+            const builderOutputs = JSON.parse(core.getInput('builder-outputs'));
+            core.info(JSON.stringify(builderOutputs, null, 2));
+
   build-set-runner:
     uses: ./.github/workflows/build.yml
     permissions:
@@ -320,6 +440,21 @@ jobs:
           username: ${{ secrets.AWS_ACCESS_KEY_ID }}
           password: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
 
+  bake-aws-single-outputs:
+    runs-on: ubuntu-24.04
+    needs:
+      - bake-aws-single
+    steps:
+      -
+        name: Builder outputs
+        uses: actions/github-script@v8
+        env:
+          INPUT_BUILDER-OUTPUTS: ${{ toJSON(needs.bake-aws-single.outputs) }}
+        with:
+          script: |
+            const builderOutputs = JSON.parse(core.getInput('builder-outputs'));
+            core.info(JSON.stringify(builderOutputs, null, 2));
+
   bake-aws:
     uses: ./.github/workflows/bake.yml
     permissions:
@@ -356,6 +491,21 @@ jobs:
           username: ${{ secrets.AWS_ACCESS_KEY_ID }}
           password: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
 
+  bake-aws-outputs:
+    runs-on: ubuntu-24.04
+    needs:
+      - bake-aws
+    steps:
+      -
+        name: Builder outputs
+        uses: actions/github-script@v8
+        env:
+          INPUT_BUILDER-OUTPUTS: ${{ toJSON(needs.bake-aws.outputs) }}
+        with:
+          script: |
+            const builderOutputs = JSON.parse(core.getInput('builder-outputs'));
+            core.info(JSON.stringify(builderOutputs, null, 2));
+
   bake-ghcr-and-aws:
     uses: ./.github/workflows/bake.yml
     permissions:
@@ -400,6 +550,21 @@ jobs:
           username: ${{ secrets.AWS_ACCESS_KEY_ID }}
           password: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
 
+  bake-ghcr-and-aws-outputs:
+    runs-on: ubuntu-24.04
+    needs:
+      - bake-ghcr-and-aws
+    steps:
+      -
+        name: Builder outputs
+        uses: actions/github-script@v8
+        env:
+          INPUT_BUILDER-OUTPUTS: ${{ toJSON(needs.bake-ghcr-and-aws.outputs) }}
+        with:
+          script: |
+            const builderOutputs = JSON.parse(core.getInput('builder-outputs'));
+            core.info(JSON.stringify(builderOutputs, null, 2));
+
   bake-local:
     uses: ./.github/workflows/bake.yml
     permissions:
@@ -422,6 +587,21 @@ jobs:
     with:
       builder-outputs: ${{ toJSON(needs.bake-local.outputs) }}
 
+  bake-local-outputs:
+    runs-on: ubuntu-24.04
+    needs:
+      - bake-local
+    steps:
+      -
+        name: Builder outputs
+        uses: actions/github-script@v8
+        env:
+          INPUT_BUILDER-OUTPUTS: ${{ toJSON(needs.bake-local.outputs) }}
+        with:
+          script: |
+            const builderOutputs = JSON.parse(core.getInput('builder-outputs'));
+            core.info(JSON.stringify(builderOutputs, null, 2));
+
   bake-local-single:
     uses: ./.github/workflows/bake.yml
     permissions:
@@ -444,6 +624,21 @@ jobs:
     with:
       builder-outputs: ${{ toJSON(needs.bake-local-single.outputs) }}
 
+  bake-local-single-outputs:
+    runs-on: ubuntu-24.04
+    needs:
+      - bake-local-single
+    steps:
+      -
+        name: Builder outputs
+        uses: actions/github-script@v8
+        env:
+          INPUT_BUILDER-OUTPUTS: ${{ toJSON(needs.bake-local-single.outputs) }}
+        with:
+          script: |
+            const builderOutputs = JSON.parse(core.getInput('builder-outputs'));
+            core.info(JSON.stringify(builderOutputs, null, 2));
+
   bake-set-runner:
     uses: ./.github/workflows/bake.yml
     permissions:

diff --git a/.github/workflows/bake.yml b/.github/workflows/bake.yml
@@ -125,17 +125,20 @@ on:
         description: "GitHub Token used to authenticate against a repository for Git context"
         required: false
     outputs:
+      meta-json:
+        description: "Metadata JSON output (only for image output)"
+        value: ${{ jobs.finalize.outputs.meta-json }}
       cosign-version:
-        description: Cosign version used for verification
+        description: "Cosign version used for verification"
         value: ${{ jobs.finalize.outputs.cosign-version }}
       cosign-verify-commands:
-        description: Cosign verify commands
+        description: "Cosign verify commands"
         value: ${{ jobs.finalize.outputs.cosign-verify-commands }}
       artifact-name:
-        description: Name of the uploaded artifact (for local output)
+        description: "Name of the uploaded artifact (for local output)"
         value: ${{ jobs.finalize.outputs.artifact-name }}
       output-type:
-        description: Build output type
+        description: "Build output type"
         value: ${{ jobs.finalize.outputs.output-type }}
 
 env:
@@ -661,6 +664,7 @@ jobs:
   finalize:
     runs-on: ubuntu-24.04
     outputs:
+      meta-json: ${{ steps.meta.outputs.json }}
       cosign-version: ${{ env.COSIGN_VERSION }}
       cosign-verify-commands: ${{ steps.set.outputs.cosign-verify-commands }}
       artifact-name: ${{ inputs.artifact-name }}

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -136,17 +136,20 @@ on:
         description: "GitHub Token used to authenticate against a repository for Git context"
         required: false
     outputs:
+      meta-json:
+        description: "Metadata JSON output (only for image output)"
+        value: ${{ jobs.finalize.outputs.meta-json }}
       cosign-version:
-        description: Cosign version used for verification
+        description: "Cosign version used for verification"
         value: ${{ jobs.finalize.outputs.cosign-version }}
       cosign-verify-commands:
-        description: Cosign verify commands
+        description: "Cosign verify commands"
         value: ${{ jobs.finalize.outputs.cosign-verify-commands }}
       artifact-name:
-        description: Name of the uploaded artifact (for local output)
+        description: "Name of the uploaded artifact (for local output)"
         value: ${{ jobs.finalize.outputs.artifact-name }}
       output-type:
-        description: Build output type
+        description: "Build output type"
         value: ${{ jobs.finalize.outputs.output-type }}
 
 env:
@@ -555,6 +558,7 @@ jobs:
   finalize:
     runs-on: ubuntu-24.04
     outputs:
+      meta-json: ${{ steps.meta.outputs.json }}
       cosign-version: ${{ env.COSIGN_VERSION }}
       cosign-verify-commands: ${{ steps.set.outputs.cosign-verify-commands }}
       artifact-name: ${{ inputs.artifact-name }}