Skip to content

Add Docker build workflow #98

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
jack-arturo merged 14 commits into from
Mar 7, 2026
+208 −0
Merged

Add Docker build workflow #98

Show file tree
Hide file tree
Changes from 8 commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
1f17273
docker-build.yml
Feb 26, 2026
600e0c4
ci(docker): add conditional login and multi-arch support
Feb 26, 2026
9f0ccac
docker-build.yml
Feb 26, 2026
6ae928a
ci(mcp-sse-server): add Docker build workflow
Feb 26, 2026
3f959df
ci(mcp-sse-server): fix workflow triggers and permissions
Feb 26, 2026
3657e84
ci(mcp-sse-server): add concurrency control to prevent race conditions
Feb 26, 2026
6de27b0
fix(ci): correct mcp sse docker workflow yaml indentation
Feb 26, 2026
56d762e
Merge branch 'main' into main
jack-arturo Mar 2, 2026
cf50cab
Merge branch 'verygoodplugins:main' into main
sakullla Mar 3, 2026
87cf580
Merge branch 'verygoodplugins:main' into main
sakullla Mar 6, 2026
bdc5e22
ci(workflows): optimize docker build triggers and multi-arch strategy
Mar 6, 2026
c1b8bee
ci(workflows): align mcp sse docker trigger policy
Mar 6, 2026
921f176
Merge branch 'main' into main
jack-arturo Mar 7, 2026
c286658
fix(ci): trigger mcp sse docker build on lockfile changes
jack-arturo Mar 7, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
81 changes: 81 additions & 0 deletions .github/workflows/docker-build-mcp-sse-server-tags.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,81 @@
# Docker Build for MCP SSE Server (Tags) - Build and push on version tags
#
# This workflow builds the mcp-sse-server Docker image when version tags are pushed.
# Tag events are handled separately because GitHub Actions ignores paths filters for tags.
#
# Required secrets:
# - GITHUB_TOKEN (auto-provided): Used to authenticate with GHCR

name: Docker Build (MCP SSE Server - Tags)

on:
push:
tags: ["v*"]

Comment thread
sakullla marked this conversation as resolved.
Outdated
concurrency:
group: docker-build-mcp-sse-server-tags
cancel-in-progress: false

env:
REGISTRY: ghcr.io
IMAGE_NAME: ${{ github.repository }}/mcp-sse-server

jobs:
publish:
runs-on: ubuntu-latest
permissions:
contents: read
packages: write
attestations: write
id-token: write

steps:
- name: Checkout repository
uses: actions/checkout@v4

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3

- name: Log in to Container Registry
uses: docker/login-action@v3
with:
registry: ${{ env.REGISTRY }}
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Extract metadata
id: meta
uses: docker/metadata-action@v5
with:
images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
tags: |
type=semver,pattern={{version}}
type=semver,pattern={{major}}.{{minor}}
type=semver,pattern={{major}}
type=sha,prefix=sha-,suffix=,format=short

- name: Build and push Docker image
id: push
uses: docker/build-push-action@v6
with:
context: ./mcp-sse-server
push: true
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
cache-from: type=gha
cache-to: type=gha,mode=max
platforms: linux/amd64,linux/arm64

- name: Generate artifact attestation
uses: actions/attest-build-provenance@v2
with:
subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
subject-digest: ${{ steps.push.outputs.digest }}
push-to-registry: true

- name: Print image digest
run: |
echo "✅ MCP SSE Server image pushed successfully!"
echo "📦 Digest: ${{ steps.push.outputs.digest }}"
echo "🐳 Tags:"
echo "${{ steps.meta.outputs.tags }}"
135 changes: 135 additions & 0 deletions .github/workflows/docker-build-mcp-sse-server.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,135 @@
# Docker Build for MCP SSE Server - Build and push image to GitHub Container Registry
#
# This workflow builds the mcp-sse-server Docker image on every push to main
# and pushes it to GitHub Container Registry (ghcr).
#
# Usage:
# - Image is tagged with: latest, commit SHA, and Git tag (if present)
# - Access packages at: https://github.com/OWNER/REPOSITORY/pkgs/container/REPO_NAME
#
# Required secrets:
# - GITHUB_TOKEN (auto-provided): Used to authenticate with GHCR

name: Docker Build (MCP SSE Server)

on:
push:
branches: [main]
paths:
- "mcp-sse-server/**"
- ".github/workflows/docker-build-mcp-sse-server.yml"
Comment thread
coderabbitai[bot] marked this conversation as resolved.
pull_request:
branches: [main]
paths:
- "mcp-sse-server/**"
- ".github/workflows/docker-build-mcp-sse-server.yml"
workflow_dispatch:
Comment thread
sakullla marked this conversation as resolved.
inputs:
tag:
description: "Custom tag for the image (optional)"
required: false
default: ""

concurrency:
group: docker-build-mcp-sse-server-${{ github.ref }}
cancel-in-progress: true

env:
REGISTRY: ghcr.io
IMAGE_NAME: ${{ github.repository }}/mcp-sse-server

jobs:
build:
runs-on: ubuntu-latest
permissions:
contents: read

steps:
- name: Checkout repository
uses: actions/checkout@v4

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3

- name: Extract metadata
id: meta
uses: docker/metadata-action@v5
with:
images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
tags: |
type=ref,event=branch
type=ref,event=pr
type=sha,prefix=sha-,suffix=,format=short
type=raw,value=${{ inputs.tag }},enable=${{ inputs.tag != '' }}

- name: Build Docker image
uses: docker/build-push-action@v6
with:
context: ./mcp-sse-server
push: false
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
cache-from: type=gha
cache-to: type=gha,mode=max
platforms: linux/amd64,linux/arm64

publish:
runs-on: ubuntu-latest
needs: build
if: github.event_name != 'pull_request'
permissions:
contents: read
packages: write
attestations: write
id-token: write
Comment thread
coderabbitai[bot] marked this conversation as resolved.

steps:
- name: Checkout repository
uses: actions/checkout@v4

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3

- name: Log in to Container Registry
uses: docker/login-action@v3
with:
registry: ${{ env.REGISTRY }}
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Extract metadata
id: meta
uses: docker/metadata-action@v5
with:
images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
tags: |
type=ref,event=branch
type=sha,prefix=sha-,suffix=,format=short
type=raw,value=latest,enable={{is_default_branch}}
type=raw,value=${{ inputs.tag }},enable=${{ inputs.tag != '' }}

- name: Build and push Docker image
id: push
uses: docker/build-push-action@v6
with:
context: ./mcp-sse-server
push: true
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
cache-from: type=gha
cache-to: type=gha,mode=max
platforms: linux/amd64,linux/arm64

- name: Generate artifact attestation
uses: actions/attest-build-provenance@v2
with:
subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
subject-digest: ${{ steps.push.outputs.digest }}
push-to-registry: true

- name: Print image digest
run: |
echo "✅ MCP SSE Server image pushed successfully!"
echo "📦 Digest: ${{ steps.push.outputs.digest }}"
echo "🐳 Tags:"
echo "${{ steps.meta.outputs.tags }}"
102 changes: 102 additions & 0 deletions .github/workflows/docker-build.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,102 @@
# Docker Build - Build and push image to GitHub Container Registry
#
# This workflow builds the Docker image on every push to main
# and pushes it to GitHub Container Registry (ghcr.io).
#
# Usage:
# - Image is tagged with: latest, commit SHA, and Git tag (if present)
# - Access packages at: https://github.com/OWNER/REPOSITORY/pkgs/container/REPO_NAME
#
# Required secrets:
# - GITHUB_TOKEN (auto-provided): Used to authenticate with GHCR

name: Docker Build

on:
push:
branches: [main]
tags: ["v*"]
pull_request:
branches: [main]
paths:
- Dockerfile
- requirements.txt
- "**.py"
- ".github/workflows/docker-build.yml"
workflow_dispatch:
inputs:
tag:
description: "Custom tag for the image (optional)"
required: false
default: ""

env:
REGISTRY: ghcr.io
IMAGE_NAME: ${{ github.repository }}

jobs:
build:
runs-on: ubuntu-latest
permissions:
contents: read
packages: write
attestations: write
id-token: write

steps:
- name: Checkout repository
uses: actions/checkout@v4

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3

- name: Log in to Container Registry
if: github.event_name != 'pull_request'
uses: docker/login-action@v3
with:
registry: ${{ env.REGISTRY }}
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Extract metadata
id: meta
uses: docker/metadata-action@v5
with:
images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
tags: |
type=ref,event=branch
type=ref,event=pr
type=semver,pattern={{version}}
type=semver,pattern={{major}}.{{minor}}
type=semver,pattern={{major}}
type=sha,prefix=sha-,suffix=,format=short
type=raw,value=latest,enable={{is_default_branch}}
type=raw,value=${{ inputs.tag }},enable=${{ inputs.tag != '' }}

- name: Build and push Docker image
id: push
uses: docker/build-push-action@v6
with:
context: .
push: ${{ github.event_name != 'pull_request' }}
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
cache-from: type=gha
cache-to: type=gha,mode=max
platforms: linux/amd64,linux/arm64

- name: Generate artifact attestation
if: github.event_name != 'pull_request'
uses: actions/attest-build-provenance@v2
with:
subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
subject-digest: ${{ steps.push.outputs.digest }}
push-to-registry: true

- name: Print image digest
if: github.event_name != 'pull_request'
run: |
echo "✅ Image pushed successfully!"
echo "📦 Digest: ${{ steps.push.outputs.digest }}"
echo "🐳 Tags:"
echo "${{ steps.meta.outputs.tags }}"