.gitea/workflows/release.yml aktualisiert

.gitea/workflows/release.yml

@@ -1,15 +1,14 @@
- 
-name: Build nginx fpm image
+name: Build nginx fpm 8.2 image
 
 on:
   push:
     branches: [ master ]
+  schedule:
+    # Run every Sunday at midnight
+    - cron: '0 0 * * 0'
 
 env:
-  # Use docker.io for Docker Hub if empty
-  USER: chris
-  PASS: q',\H(Od:G3).Xv<#!5P
-
+  IMAGE: /docker/nginx-fpm-8-2
 
 jobs:
   Build-and-release-image:
@@ -23,47 +22,57 @@ jobs:
       - name: Set up Docker Buildx
         uses: docker/setup-buildx-action@v2
 
-      - name: Log into registry
+      - name: Login to Docker Hub
         uses: docker/login-action@v3
         with:
-          registry: https://cs-git.ddnss.de
-          username: ${{ env.USER }}
-          password: ${{ env.PASS }}
+          username: ${{ vars.DOCKERHUB_USER }}
+          password: ${{ vars.DOCKERHUB_TOKEN }}
+
+      - name: Log into CS registry
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ vars.CS_REGISTRY_URL }}
+          username: ${{ vars.CS_REGISTRY_USER }}
+          password: ${{ vars.CS_REGISTRY_PASS }}
+
+      - name: Log into local registry
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ vars.LOCAL_REGISTRY_URL }}
+          username: ${{ vars.LOCAL_REGISTRY_USER }}
+          password: ${{ vars.LOCAL_REGISTRY_PASS }}
 
       - name: Extract Docker metadata
         id: meta
         uses: docker/metadata-action@v5
         with:
-          images: cs-git.ddnss.de/docker/nginx-fpm
+          images: ${{ secrets.REGISTRY_URL }}${{ env.IMAGE }}
 
       - name: Build and push Docker image
         uses: docker/build-push-action@v4
         env:
           ACTIONS_RUNTIME_TOKEN: ''
         with:
-          tags: cs-git.ddnss.de/docker/nginx-fpm:latest
+          tags: ${{ vars.LOCAL_REGISTRY_URL }}${{ env.IMAGE }}:latest
           push: true
           
       - name: Scan image
         uses: anchore/scan-action@v6
         id: scan
         with:
-          image: "cs-git.ddnss.de/docker/nginx-fpm:latest"
+          image: ${{ vars.LOCAL_REGISTRY_URL }}${{ env.IMAGE }}:latest
           fail-build: false
           output-format: table
           severity-cutoff: critical
-          registry-username: ${{ env.USER }}
-          registry-password: ${{ env.PASS }}
+          registry-username: ${{ vars.LOCAL_REGISTRY_USER }}
+          registry-password: ${{ vars.LOCAL_REGISTRY_PASS }}
           grype-version: 'v0.90.0'
       
       - name: Inspect file
         run: cat ${{ steps.scan.outputs.table }}
 
-      - name: Write file
-        run: echo ${{ steps.scan.outputs.table }} >> result.txt
-
       - name: Upload Artifact
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v3
         with:
           name: scan-result
-          path: result.txt
+          path: ${{ steps.scan.outputs.table }}

README.md

@@ -1,8 +1,8 @@
-# Docker PHP-FPM & Nginx on Alpine Linux
+# Docker PHP-FPM 8.2 & Nginx on Alpine Linux
 
 * Built on the lightweight and secure Alpine Linux distribution
 * Small image size
-* PHP 8.1
+* PHP 8.2
 * Optimized for 100 concurrent users
 * Optimized to only use resources when there's traffic (PHP-FPM's on-demand process manager)
 * Using a non-privileged user to make it more secure