GitHub CI 构建 Docker 镜像并发布到各个平台的 Action

jetsung

GitHub CI 构建 Docker 镜像并发布到各个平台的 Action

Go 语言程序构建示例： https://github.com/idevsig/shortener

jobs:
  build-and-push:
    runs-on: ubuntu-latest
    strategy:
      matrix:
        architecture: [ amd64, arm64 ]

      - name: Build and push Docker image for ${{ matrix.architecture }}
        uses: docker/build-push-action@v4
        with:
          context: .
          file: ./Dockerfile
          platforms: linux/${{ matrix.architecture }}
          push: true
          tags: |
            ${REGISTRY}/${IMAGE_NAME}:latest-${{ matrix.architecture }}
            ${REGISTRY}/${IMAGE_NAME}:v1.0.0-${{ matrix.architecture }}

      - name: Combine multi-arch images
        if: matrix.architecture == 'amd64'
        run: |
          docker buildx imagetools create \
            --tag ${REGISTRY}/${IMAGE_NAME}:latest \
            ${REGISTRY}/${IMAGE_NAME}:latest-amd64 \
            ${REGISTRY}/${IMAGE_NAME}:latest-arm64

jetsung

Registry	Zone	Image
Docker Hub		`docker.io`
GitHub Container Registry		`ghcr.io`
Tencent Cloud Container Registry		`ccr.ccs.tencentyun.com`
Aliyun Cloud Container Registry	杭州	`registry.cn-hangzhou.aliyuncs.com`
	广州	`registry.cn-guangzhou.aliyuncs.com`
Huawei Cloud Container Registry	华南	`swr.cn-south-1.myhuaweicloud.com`
	东南亚	`swr.ap-southeast-3.myhuaweicloud.com`

构建参数

平台	登录名	登录令牌
Docker	`DOCKERHUB_USERNAME`	`DOCKERHUB_TOKEN`
阿里云	`ALIYUN_USERNAME`	`ALIYUN_TOKEN`
华为云	`HUAWEI_USERNAME`	`HUAWEI_TOKEN`
腾讯云	`TENCENT_USERNAME`	`TENCENT_TOKEN`

jetsung

GitHub CI

使用 `docker-bake.hcl`

docker-release.yml

name: Docker-Release

on:
  push:
    tags:
      - "*"
    paths:
      - "docker/*Dockerfile"
      - ".github/workflows/docker-release.yml"

env:
  package_name: shortener
  acr_registry: registry.cn-guangzhou.aliyuncs.com
  hcr_registry: swr.ap-southeast-3.myhuaweicloud.com
  tcr_registry: ccr.ccs.tencentyun.com

jobs:
  release:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout Source Code
        uses: actions/checkout@v4

      - name: Set version without 'v' prefix
        run: |
            ref_tag="${{ github.ref_name }}"
            ref_tag="${ref_tag#v}"
            echo "Detected tag: $ref_tag"
            echo "branch=$ref_tag" >> $GITHUB_ENV          

      - name: Login to GitHub Container Registry (ghcr.io)
        uses: docker/login-action@v3
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}
      - name: Verify GHCR Docker Login
        run: |
          if ! docker info > /dev/null 2>&1; then
            echo "ghcr.io Docker login failed!"
            echo "GHCRIO_LOGIN_STATUS=failed" >> $GITHUB_ENV
          else
            echo "ghcr.io Docker login succeeded."
            echo "GHCRIO_LOGIN_STATUS=success" >> $GITHUB_ENV
          fi
      - name: Generate Github Container Registry Tags
        id: ghcr_ver
        if: env.GHCRIO_LOGIN_STATUS == 'success'
        env:
          IMAGE_REPO: ghcr.io/${{ github.repository_owner }}/${{ env.package_name }}
        run: |
          echo "IMAGE_REPO=$IMAGE_REPO" >> $GITHUB_OUTPUT

      - name: Check Docker Hub Credentials
        id: check_docker_creds
        run: |
          if [[ -n "${{ secrets.DOCKERHUB_USERNAME }}" && -n "${{ secrets.DOCKERHUB_TOKEN }}" ]]; then
            echo "creds_exist=true" >> $GITHUB_OUTPUT
          else
            echo "creds_exist=false" >> $GITHUB_OUTPUT
          fi
      - name: Login to Docker Hub 
        if: steps.check_docker_creds.outputs.creds_exist == 'true'
        uses: docker/login-action@v3
        with:
          registry: docker.io
          username: ${{ secrets.DOCKERHUB_USERNAME }}
          password: ${{ secrets.DOCKERHUB_TOKEN }}
      - name: Verify Docker Login
        if: steps.check_docker_creds.outputs.creds_exist == 'true'
        run: |
          if ! docker info > /dev/null 2>&1; then
            echo "docker.io Docker login failed!"
            echo "DOCKERIO_LOGIN_STATUS=failed" >> $GITHUB_ENV
          else
            echo "docker.io Docker login succeeded."
            echo "DOCKERIO_LOGIN_STATUS=success" >> $GITHUB_ENV
          fi      
      - name: Generate Docker Hub Tags
        id: docker_ver
        if: env.DOCKERIO_LOGIN_STATUS == 'success'
        env:
          IMAGE_REPO: ${{ github.repository_owner }}/${{ env.package_name }}
        run: |
          echo "IMAGE_REPO=$IMAGE_REPO" >> $GITHUB_OUTPUT

      - name: Check Aliyun Credentials
        id: check_aliyun_creds
        run: |
          if [[ -n "${{ secrets.ALIYUN_USERNAME }}" && -n "${{ secrets.ALIYUN_TOKEN }}" ]]; then
            echo "creds_exist=true" >> $GITHUB_OUTPUT
          else
            echo "creds_exist=false" >> $GITHUB_OUTPUT
          fi
      - name: Login to Aliyun 
        if: steps.check_aliyun_creds.outputs.creds_exist == 'true'
        uses: docker/login-action@v3
        with:
          registry: ${{ env.acr_registry }}
          username: ${{ secrets.ALIYUN_USERNAME }}
          password: ${{ secrets.ALIYUN_TOKEN }}
      - name: Verify Aliyun Docker Login
        if: steps.check_aliyun_creds.outputs.creds_exist == 'true'
        run: |
          if ! docker info > /dev/null 2>&1; then
            echo "aliyun Docker login failed!"
            echo "ALIYUN_LOGIN_STATUS=failed" >> $GITHUB_ENV
          else
            echo "aliyun Docker login succeeded."
            echo "ALIYUN_LOGIN_STATUS=success" >> $GITHUB_ENV
          fi             
      - name: Generate Aliyun Container Registry Tags
        id: acr_ver
        if: env.ALIYUN_LOGIN_STATUS == 'success'
        env:
          IMAGE_REPO:  ${{ env.acr_registry }}/${{ github.repository_owner }}/${{ env.package_name }}
        run: |
          echo "IMAGE_REPO=$IMAGE_REPO" >> $GITHUB_OUTPUT

      - name: 华为云无法推送
        run: |
          echo "华为云无法推送："
          echo "buildx failed with: ERROR: failed to solve: failed to push xxx: failed commit on ref "index-sha256:xxx": unexpected status from PUT request to https://xxx: 400 Bad Request"
      - name: Check Huawei Cloud Credentials
        id: check_huawei_creds
        run: |
          if [[ -n "${{ secrets.HUAWEI_USERNAME }}" && -n "${{ secrets.HUAWEI_TOKEN }}" ]]; then
            echo "creds_exist=true" >> $GITHUB_OUTPUT
          else
            echo "creds_exist=false" >> $GITHUB_OUTPUT
          fi
      - name: Login to Huawei Cloud 
        if: steps.check_huawei_creds.outputs.creds_exist == 'true'
        uses: docker/login-action@v3
        with:
          registry: ${{ env.hcr_registry }}
          username: ${{ secrets.HUAWEI_USERNAME }}
          password: ${{ secrets.HUAWEI_TOKEN }}
      - name: Verify Huawei Docker Login
        if: steps.check_huawei_creds.outputs.creds_exist == 'true'
        run: |
          if ! docker info > /dev/null 2>&1; then
            echo "huawei Docker login failed!"
            echo "HUAWEI_LOGIN_STATUS=failed" >> $GITHUB_ENV
          else
            echo "huawei Docker login succeeded."
            echo "HUAWEI_LOGIN_STATUS=success" >> $GITHUB_ENV
          fi              
      - name: Generate Huawei Cloud Container Registry Tags
        id: hcr_ver
        if: env.HUAWEI_LOGIN_STATUS == 'success'
        env:
          IMAGE_REPO:  ${{ env.hcr_registry }}/${{ github.repository_owner }}/${{ env.package_name }}
        run: |
          echo "IMAGE_REPO=$IMAGE_REPO" >> $GITHUB_OUTPUT

      - name: Check Tencent Cloud Credentials
        id: check_tencent_creds
        run: |
          if [[ -n "${{ secrets.TENCENT_USERNAME }}" && -n "${{ secrets.TENCENT_TOKEN }}" ]]; then
            echo "creds_exist=true" >> $GITHUB_OUTPUT
          else
            echo "creds_exist=false" >> $GITHUB_OUTPUT
          fi
      - name: Login to Tencent Cloud
        if: steps.check_tencent_creds.outputs.creds_exist == 'true'
        uses: docker/login-action@v3
        with:
          registry: ${{ env.tcr_registry }}
          username: ${{ secrets.TENCENT_USERNAME }}
          password: ${{ secrets.TENCENT_TOKEN }}
      - name: Verify Tencent Docker Login
        if: steps.check_tencent_creds.outputs.creds_exist == 'true'
        run: |
          if ! docker info > /dev/null 2>&1; then
            echo "tencent Docker login failed!"
            echo "TENCENT_LOGIN_STATUS=failed" >> $GITHUB_ENV
          else
            echo "tencent Docker login succeeded."
            echo "TENCENT_LOGIN_STATUS=success" >> $GITHUB_ENV
          fi            
      - name: Generate Tencent Cloud Container Registry Tags
        id: tcr_ver
        if: env.TENCENT_LOGIN_STATUS == 'success'
        env:
          IMAGE_REPO:  ${{ env.tcr_registry }}/${{ github.repository_owner }}/${{ env.package_name }}
        run: |
          echo "IMAGE_REPO=$IMAGE_REPO" >> $GITHUB_OUTPUT

      - name: Set up QEMU
        uses: docker/setup-qemu-action@v3

      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v3

      - name: Tags
        id: tags
        run: |
            if [[ -n "${{ steps.ghcr_ver.outputs.IMAGE_REPO }}" ]]; then
              echo "ghcr=${{ steps.ghcr_ver.outputs.IMAGE_REPO }}" >> $GITHUB_OUTPUT
            fi
            
            if [[ -n "${{ steps.docker_ver.outputs.IMAGE_REPO }}" ]]; then
              echo "docker=${{ steps.docker_ver.outputs.IMAGE_REPO }}" >> $GITHUB_OUTPUT
            fi
            
            if [[ -n "${{ steps.acr_ver.outputs.IMAGE_REPO }}" ]]; then
              echo "acr=${{ steps.acr_ver.outputs.IMAGE_REPO }}" >> $GITHUB_OUTPUT
            fi

            if [[ -n "${{ steps.hcr_ver.outputs.IMAGE_REPO }}" ]]; then
              echo "hcr=${{ steps.hcr_ver.outputs.IMAGE_REPO }}" >> $GITHUB_OUTPUT
            fi

            if [[ -n "${{ steps.tcr_ver.outputs.IMAGE_REPO }}" ]]; then
              echo "tcr=${{ steps.tcr_ver.outputs.IMAGE_REPO }}" >> $GITHUB_OUTPUT
            fi

      - name: Docker meta
        id: meta
        uses: docker/metadata-action@v5
        with:
          images: |
            ${{ steps.tags.outputs.ghcr || '' }}
            ${{ steps.tags.outputs.docker || '' }}
            ${{ steps.tags.outputs.acr || '' }}
            ${{ steps.tags.outputs.hcr || '' }}
            ${{ steps.tags.outputs.tcr || '' }}
          labels: |
            org.opencontainers.image.title=Shortener
            org.opencontainers.image.description=Shortener is a URL shortening service.
            org.opencontainers.image.vendor=Jetsung Chan
          tags: |
            ${{ env.branch }}
            latest
    
      - name: Build
        uses: docker/bake-action@v6
        with:
          files: |
            ./docker-bake.hcl
            cwd://${{ steps.meta.outputs.bake-file }}
          targets: release
          push: ${{ github.event_name != 'pull_request' }}            

      - uses: actions/delete-package-versions@v5
        continue-on-error: true
        with: 
          package-name: ${{ env.package_name }}
          package-type: 'container'
          min-versions-to-keep: 2
          delete-only-untagged-versions: 'true'

docker-dev.yml

name: Docker-Dev

on:
  push:
    branches:
      - dev*
    paths:
      - docker-bake.hcl
      - "docker/*Dockerfile"
      - ".github/workflows/docker-dev.yml"

env:
  package_name: shortener

jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout Source Code
        uses: actions/checkout@v4   
      - name: Login to GitHub Container Registry (ghcr.io)
        uses: docker/login-action@v3
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}

      - name: Docker meta
        id: meta
        uses: docker/metadata-action@v5
        env: 
          GHCR_SLUG: ghcr.io/${{ github.repository_owner }}/${{ env.package_name }}        
        with:
          images: |
            ${{ env.GHCR_SLUG }}
          labels: |
            org.opencontainers.image.title=Shortener
            org.opencontainers.image.description=Shortener is a URL shortening service.
            org.opencontainers.image.vendor=Jetsung Chan
          tags: |
            dev
      
      - name: Set up QEMU
        uses: docker/setup-qemu-action@v3
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v3

      - name: Build
        uses: docker/bake-action@v6
        with:
          files: |
            ./docker-bake.hcl
            cwd://${{ steps.meta.outputs.bake-file }}
          targets: dev
          push: ${{ github.event_name != 'pull_request' }}    
      
      - uses: actions/delete-package-versions@v5
        continue-on-error: true
        with: 
          package-name: ${{ env.package_name }}
          package-type: 'container'
          min-versions-to-keep: 2
          delete-only-untagged-versions: 'true'

docker-bake.hcl

## https://docs.docker.com/build/bake/
## https://docs.docker.com/reference/cli/docker/buildx/bake/#set
## https://github.com/crazy-max/buildx#remote-with-local
## https://github.com/docker/metadata-action

variable "GO_VERSION" {
  default = "1.24"
}

variable "GO_PROXY" {
    default = "https://goproxy.cn"
}

## Special target: https://github.com/docker/metadata-action#bake-definition
target "docker-metadata-action" {}

target "_image" {
    inherits = ["docker-metadata-action"]
}

target "_common" {
    labels = {
        "org.opencontainers.image.source" = "https://github.com/idevsig/shortener"
        "org.opencontainers.image.documentation" = "https://github.com/idevsig/shortener"
        "org.opencontainers.image.authors" = "Jetsung Chan<i@jetsung.com>"
    }
    context = "."
    dockerfile = "deploy/docker/Dockerfile"
    args = {
        GO_VERSION="${GO_VERSION}"
        GOPROXY = null
    }
    platforms = ["linux/amd64"]
}

target "default" {
    inherits = ["_common"]
    args = {
        GO_VERSION="${GO_VERSION}"
        GOPROXY = "https://goproxy.cn"
    }    
    tags = [
      "shortener:local",
    ]    
}

group "dev" {
  targets = ["dev"]
}

target "dev" {
    inherits = ["_common", "_image"]
}

group "release" {
  targets = ["release"]
}

target "release" {
    inherits = ["_common", "_image"]
    platforms = ["linux/amd64","linux/arm64"]
}

无其它依赖

docker.yml

name: Docker

on:
  push:
    branches:
      - main
      - dev*
    tags:
      - "*"
    paths:
      - "Containerfile"
      - ".github/workflows/docker.yml"
      - "src/**"
      - "Cargo.toml"

jobs:
  docker:
    name: Build and Push
    runs-on: ubuntu-latest
    env:
      package_name: shorturl
      acr_registry: registry.cn-hangzhou.aliyuncs.com
      hcr_registry: swr.ap-southeast-3.myhuaweicloud.com
      tcr_registry: ccr.ccs.tencentyun.com
    steps:
      - name: Checkout Source Code
        uses: actions/checkout@v4

      - name: Login to GitHub Container Registry (ghcr.io)
        uses: docker/login-action@v3
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}

      - name: Generate Github Container Registry Tags
        id: ghcr_tag
        env:
          IMAGE_REPO: ghcr.io/${{ github.repository_owner }}/${{ env.package_name }}
        run: |
          # Check if the current ref is a tag
          if [[ "${{ github.ref_type }}" == "tag" ]]; then
            # delete tag as v0.1.0 to 0.1.0
            ref_tag="${{ github.ref_name }}"
            ref_tag="${ref_tag#v}"
            echo "Detected tag: $ref_tag"
            echo "tag=$IMAGE_REPO:$ref_tag" >> $GITHUB_OUTPUT
            echo "latest=$IMAGE_REPO:latest" >> $GITHUB_OUTPUT
          elif [[ "${{ github.ref_name }}" == "main" ]]; then
            echo "tag=$IMAGE_REPO:main" >> $GITHUB_OUTPUT
          else
            echo "tag=$IMAGE_REPO:dev" >> $GITHUB_OUTPUT
          fi    

      - name: Check Docker Hub Credentials
        id: check_docker_creds
        run: |
          if [[ -n "${{ secrets.DOCKERHUB_USERNAME }}" && -n "${{ secrets.DOCKERHUB_TOKEN }}" ]]; then
            echo "creds_exist=true" >> $GITHUB_OUTPUT
          else
            echo "creds_exist=false" >> $GITHUB_OUTPUT
          fi
      - name: Login to Docker Hub 
        if: steps.check_docker_creds.outputs.creds_exist == 'true'
        uses: docker/login-action@v3
        with:
          registry: docker.io
          username: ${{ secrets.DOCKERHUB_USERNAME }}
          password: ${{ secrets.DOCKERHUB_TOKEN }}
      - name: Generate Docker Hub Tags
        id: dockerhub_tag
        if: steps.check_docker_creds.outputs.creds_exist == 'true'
        env:
          IMAGE_REPO: ${{ github.repository_owner }}/${{ env.package_name }}
        run: |
          # Check if the current ref is a tag
          if [[ "${{ github.ref_type }}" == "tag" ]]; then
            # delete tag as v0.1.0 to 0.1.0
            ref_tag="${{ github.ref_name }}"
            ref_tag="${ref_tag#v}"
            echo "Detected tag: $ref_tag"
            echo "tag=$IMAGE_REPO:$ref_tag" >> $GITHUB_OUTPUT
            echo "latest=$IMAGE_REPO:latest" >> $GITHUB_OUTPUT
          elif [[ "${{ github.ref_name }}" == "main" ]]; then
            echo "tag=$IMAGE_REPO:main" >> $GITHUB_OUTPUT
          else
            echo "tag=$IMAGE_REPO:dev" >> $GITHUB_OUTPUT
          fi   

      - name: Check Aliyun Credentials
        id: check_aliyun_creds
        run: |
          if [[ -n "${{ secrets.ALIYUN_USERNAME }}" && -n "${{ secrets.ALIYUN_TOKEN }}" ]]; then
            echo "creds_exist=true" >> $GITHUB_OUTPUT
          else
            echo "creds_exist=false" >> $GITHUB_OUTPUT
          fi
      - name: Login to Aliyun 
        if: steps.check_aliyun_creds.outputs.creds_exist == 'true'
        uses: docker/login-action@v3
        with:
          registry: ${{ env.acr_registry }}
          username: ${{ secrets.ALIYUN_USERNAME }}
          password: ${{ secrets.ALIYUN_TOKEN }}
      - name: Generate Aliyun Container Registry Tags
        id: acr_tag
        if: steps.check_aliyun_creds.outputs.creds_exist == 'true'
        env:
          IMAGE_REPO:  ${{ env.acr_registry }}/${{ github.repository_owner }}/${{ env.package_name }}
        run: |
          # Check if the current ref is a tag
          if [[ "${{ github.ref_type }}" == "tag" ]]; then
            # delete tag as v0.1.0 to 0.1.0
            ref_tag="${{ github.ref_name }}"
            ref_tag="${ref_tag#v}"
            echo "Detected tag: $ref_tag"
            echo "tag=$IMAGE_REPO:$ref_tag" >> $GITHUB_OUTPUT
            echo "latest=$IMAGE_REPO:latest" >> $GITHUB_OUTPUT
          elif [[ "${{ github.ref_name }}" == "main" ]]; then
            echo "tag=$IMAGE_REPO:main" >> $GITHUB_OUTPUT
          else
            echo "tag=$IMAGE_REPO:dev" >> $GITHUB_OUTPUT
          fi   

      - name: 华为云无法推送
        run: |
          echo "华为云无法推送："
          echo "buildx failed with: ERROR: failed to solve: failed to push xxx: failed commit on ref "index-sha256:xxx": unexpected status from PUT request to https://xxx: 400 Bad Request"
      - name: Check Huawei Cloud Credentials
        id: check_huawei_creds
        run: |
          if [[ -n "${{ secrets.HUAWEI_USERNAME }}" && -n "${{ secrets.HUAWEI_TOKEN }}" ]]; then
            echo "creds_exist=true" >> $GITHUB_OUTPUT
          else
            echo "creds_exist=false" >> $GITHUB_OUTPUT
          fi
      - name: Login to Huawei Cloud 
        if: steps.check_huawei_creds.outputs.creds_exist == 'true'
        uses: docker/login-action@v3
        with:
          registry: ${{ env.hcr_registry }}
          username: ${{ secrets.HUAWEI_USERNAME }}
          password: ${{ secrets.HUAWEI_TOKEN }}
      - name: Generate Huawei Cloud Container Registry Tags
        id: hcr_tag
        if: steps.check_huawei_creds.outputs.creds_exist == 'true'
        env:
          IMAGE_REPO:  ${{ env.hcr_registry }}/${{ github.repository_owner }}/${{ env.package_name }}
        run: |
          # Check if the current ref is a tag
          if [[ "${{ github.ref_type }}" == "tag" ]]; then
            # delete tag as v0.1.0 to 0.1.0
            ref_tag="${{ github.ref_name }}"
            ref_tag="${ref_tag#v}"
            echo "Detected tag: $ref_tag"
            echo "tag=$IMAGE_REPO:$ref_tag" >> $GITHUB_OUTPUT
            echo "latest=$IMAGE_REPO:latest" >> $GITHUB_OUTPUT
          elif [[ "${{ github.ref_name }}" == "main" ]]; then
            echo "tag=$IMAGE_REPO:main" >> $GITHUB_OUTPUT
          else
            echo "tag=$IMAGE_REPO:dev" >> $GITHUB_OUTPUT
          fi   

      - name: Check Tencent Cloud Credentials
        id: check_tencent_creds
        run: |
          if [[ -n "${{ secrets.TENCENT_USERNAME }}" && -n "${{ secrets.TENCENT_TOKEN }}" ]]; then
            echo "creds_exist=true" >> $GITHUB_OUTPUT
          else
            echo "creds_exist=false" >> $GITHUB_OUTPUT
          fi
      - name: Login to Tencent Cloud
        if: steps.check_tencent_creds.outputs.creds_exist == 'true'
        uses: docker/login-action@v3
        with:
          registry: ${{ env.tcr_registry }}
          username: ${{ secrets.TENCENT_USERNAME }}
          password: ${{ secrets.TENCENT_TOKEN }}
      - name: Generate Tencent Cloud Container Registry Tags
        id: tcr_tag
        if: steps.check_tencent_creds.outputs.creds_exist == 'true'
        env:
          IMAGE_REPO:  ${{ env.tcr_registry }}/${{ github.repository_owner }}/${{ env.package_name }}
        run: |
          # Check if the current ref is a tag
          if [[ "${{ github.ref_type }}" == "tag" ]]; then
            # delete tag as v0.1.0 to 0.1.0
            ref_tag="${{ github.ref_name }}"
            ref_tag="${ref_tag#v}"
            echo "Detected tag: $ref_tag"
            echo "tag=$IMAGE_REPO:$ref_tag" >> $GITHUB_OUTPUT
            echo "latest=$IMAGE_REPO:latest" >> $GITHUB_OUTPUT
          elif [[ "${{ github.ref_name }}" == "main" ]]; then
            echo "tag=$IMAGE_REPO:main" >> $GITHUB_OUTPUT
          else
            echo "tag=$IMAGE_REPO:dev" >> $GITHUB_OUTPUT
          fi   

      - name: Set up QEMU
        uses: docker/setup-qemu-action@v3

      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v3

      - name: Build and Push Docker Images
        uses: docker/build-push-action@v6
        with:
          push: true
          context: .
          platforms: linux/amd64, linux/arm64
          file: Containerfile
          tags: |
            ${{ steps.ghcr_tag.outputs.tag || '' }}
            ${{ steps.ghcr_tag.outputs.latest || '' }}
            ${{ steps.dockerhub_tag.outputs.tag || '' }}
            ${{ steps.dockerhub_tag.outputs.latest || '' }}
            ${{ steps.acr_tag.outputs.tag || '' }}
            ${{ steps.acr_tag.outputs.latest || '' }}
            ${{ steps.hcr_tag.outputs.tag || '' }}
            ${{ steps.hcr_tag.outputs.latest || '' }}
            ${{ steps.tcr_tag.outputs.tag || '' }}
            ${{ steps.tcr_tag.outputs.latest || '' }}

      - uses: actions/delete-package-versions@v5
        continue-on-error: true
        with: 
          package-name: ${{ env.package_name }}
          package-type: 'container'
          delete-only-untagged-versions: 'true'