.github/workflows/release-nextjs-app-docker.yml from belgattitude/nextjs-monorepo-example

.github/workflows/release-nextjs-app-docker.yml
Summary

Maintainability

Test Coverage

Issues
name: Release nextjs-app docker

on:
  push:
    branches: [dev, main]
    paths:
      - 'docker/**'
      - 'apps/nextjs-app/**'
      - 'packages/**'
      - 'package.json'
      - '*.lock'
      - '.yarnrc.yml'
      - 'tsconfig.base.json'
      - '.prettier*'
      - '.github/**'

  pull_request:
    types: [opened, synchronize, reopened]
    paths:
      - 'docker/**'
      - 'apps/nextjs-app/**'
      - 'packages/**'
      - 'package.json'
      - '*.lock'
      - '.yarnrc.yml'
      - 'tsconfig.base.json'
      - '.prettier*'
      - '.github/**'

env:
  IMAGE: nextjs-monorepo-example/nextjs-app

permissions:
  contents: read

jobs:
  docker:
    # Best practice for security (disabled for example, convenient for tools like renovate, dependabot, etc.)
    # if: ${{ github.repository == 'belgattitude/nextjs-monorepo-example' && contains('refs/heads/main',github.ref)}}
    runs-on: ubuntu-latest
    name: Nextjs-app docker build
    defaults:
      run:
        shell: bash
        working-directory: ${{ github.workspace }}

    steps:
      - name: Checkout
        uses: actions/checkout@v4

      - name: ⚙️ Setup Docker meta
        id: meta
        uses: docker/metadata-action@v5
        with:
          images: ${{ env.IMAGE }}

      - name: ⚙️ Setup QEMU
        uses: docker/setup-qemu-action@v3

      - name: ⚙️ Setup Docker Buildx
        uses: docker/setup-buildx-action@v3

      - name: 🤫 Login to Docker Hub
        # Disabled for example
        if: false
        uses: docker/login-action@v3
        with:
          username: ${{ secrets.DOCKERHUB_USERNAME }}
          password: ${{ secrets.DOCKERHUB_TOKEN }}

      - name: 🏗 Build and export to Docker
        uses: docker/build-push-action@v5
        with:
          load: true
          context: .
          file: ./docker/Dockerfile
          # Disabled for example
          # push: ${{ github.event_name != 'pull_request' }}
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}
          #build-args: |
          #  "DATABASE_FILENAME=data/test.sqlite.db"
          secrets: |
            "github_token=${{ secrets.GITHUB_TOKEN }}"
          cache-from: type=gha
          cache-to: type=gha,mode=max

      - name: 🕵️ Docker image inspect
        run: docker image inspect ${{ env.IMAGE }}:${{ steps.meta.outputs.version }}

      - name: 💾 Save docker image
        run: docker save ${{ env.IMAGE }}:${{ steps.meta.outputs.version }} -o ./docker-image.tar

      - name: 📐 Compress saved image and show size
        env:
          MAX_SIZE_IN_MB: 80
          ZSTD_LEVEL: 8
        run: |
          zstd -${{ env.ZSTD_LEVEL }} -i ./docker-image.tar -o ./docker-image.tar.zst          
          ls -lah | grep docker-image.tar
          if [ $(ls -s --block-size=1048576 ./docker-image.tar.zst | cut -d' ' -f1)  -gt ${{ env.MAX_SIZE_IN_MB }} ]; then 
             echo 'Error: docker image too big'; 
             exit 1; 
          else echo "Size ok"; fi