diff --git a/.github/workflows/build-and-validate.yaml b/.github/workflows/build-and-validate.yaml index 68bed4e..6e7d85f 100644 --- a/.github/workflows/build-and-validate.yaml +++ b/.github/workflows/build-and-validate.yaml @@ -29,10 +29,10 @@ jobs: uses: actions/checkout@v6 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v3 + uses: docker/setup-buildx-action@v4 - name: Log into registry ${{ env.REGISTRY }} - uses: docker/login-action@v3 + uses: docker/login-action@v4 with: registry: ${{ env.REGISTRY }} username: ${{ github.actor }} diff --git a/.github/workflows/build-python-base.yaml b/.github/workflows/build-python-base.yaml index cbfb0c6..4379693 100644 --- a/.github/workflows/build-python-base.yaml +++ b/.github/workflows/build-python-base.yaml @@ -32,10 +32,10 @@ jobs: uses: actions/checkout@v6 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v3 + uses: docker/setup-buildx-action@v4 - name: Log into registry ${{ env.REGISTRY }} - uses: docker/login-action@v3 + uses: docker/login-action@v4 with: registry: ${{ env.REGISTRY }} username: ${{ github.actor }} @@ -54,14 +54,14 @@ jobs: - name: Extract Docker metadata id: meta - uses: docker/metadata-action@v5 + uses: docker/metadata-action@v6 with: images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} tags: | type=raw,value=${{ steps.python.outputs.version }}-trixie-${{ matrix.platform == 'linux/amd64' && 'amd64' || 'arm64' }} - name: Build and push Python base image for ${{ matrix.platform }} - uses: docker/build-push-action@v6 + uses: docker/build-push-action@v7 with: context: . file: Dockerfile.python-base @@ -84,7 +84,7 @@ jobs: uses: actions/checkout@v6 - name: Log into registry ${{ env.REGISTRY }} - uses: docker/login-action@v3 + uses: docker/login-action@v4 with: registry: ${{ env.REGISTRY }} username: ${{ github.actor }} diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index b2420a1..f6c9c55 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -38,10 +38,10 @@ jobs: # Set up Docker Buildx - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v3 + uses: docker/setup-buildx-action@v4 - name: Log into registry ${{ env.REGISTRY }} - uses: docker/login-action@v3 + uses: docker/login-action@v4 with: registry: ${{ env.REGISTRY }} username: ${{ github.actor }} @@ -58,7 +58,7 @@ jobs: # Use docker/metadata-action to generate tags with an architecture suffix - name: Extract Docker metadata id: meta - uses: docker/metadata-action@v5 + uses: docker/metadata-action@v6 with: images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} tags: | @@ -66,7 +66,7 @@ jobs: type=raw,value=${{ inputs.version }}-${{ matrix.arch }} - name: Build and push Docker image for ${{ matrix.platform }} - uses: docker/build-push-action@v6 + uses: docker/build-push-action@v7 with: context: . push: true @@ -92,7 +92,7 @@ jobs: uses: actions/checkout@v6 - name: Log into registry ${{ env.REGISTRY }} - uses: docker/login-action@v3 + uses: docker/login-action@v4 with: registry: ${{ env.REGISTRY }} username: ${{ github.actor }} @@ -114,7 +114,7 @@ jobs: packages: write steps: - name: Log into registry ${{ env.REGISTRY }} - uses: docker/login-action@v3 + uses: docker/login-action@v4 with: registry: ${{ env.REGISTRY }} username: ${{ github.actor }} @@ -139,6 +139,8 @@ jobs: release: needs: manifest runs-on: ubuntu-latest + permissions: + contents: write steps: - uses: actions/checkout@v6 diff --git a/Dockerfile.python-base b/Dockerfile.python-base index 005a4de..3ecdfb2 100644 --- a/Dockerfile.python-base +++ b/Dockerfile.python-base @@ -2,7 +2,7 @@ # Build and push once per Python version: # docker build -f Dockerfile.python-base -t ghcr.io/yourorg/python-optimized:3.11.2-trixie . # docker push ghcr.io/yourorg/python-optimized:3.11.2-trixie -FROM debian:trixie-20260112 +FROM debian:trixie-20260421 ARG PYTHON_VERSION=3.11.2 ENV DEBIAN_FRONTEND=noninteractive