2021-01-28 23:14:03 +01:00
[](https://github.com/docker/bake-action/releases/latest)
2020-10-08 00:52:52 +02:00
[](https://github.com/marketplace/actions/docker-buildx-bake)
2022-12-19 20:39:40 +01:00
[](https://github.com/docker/bake-action/actions?workflow=ci)
[](https://github.com/docker/bake-action/actions?workflow=test)
2021-01-28 23:14:03 +01:00
[](https://codecov.io/gh/docker/bake-action)
2020-10-08 00:52:52 +02:00
## About
2022-10-07 16:41:51 +02:00
GitHub Action to use Docker [Buildx Bake ](https://docs.docker.com/build/customize/bake/ )
2021-04-03 20:37:29 +02:00
as a high-level build command.
2020-10-08 00:52:52 +02:00
2021-05-26 15:22:18 +02:00
2020-10-08 00:52:52 +02:00
___
* [Usage ](#usage )
2024-01-12 14:15:02 +01:00
* [Path context ](#path-context )
* [Git context ](#git-context )
2024-06-27 12:55:15 +02:00
* [Summaries ](#summaries )
2020-10-08 00:52:52 +02:00
* [Customizing ](#customizing )
* [inputs ](#inputs )
2021-09-01 22:22:37 +02:00
* [outputs ](#outputs )
2024-05-15 09:42:30 +02:00
* [environment variables ](#environment-variables )
2023-12-19 13:39:15 +01:00
* [Subactions ](#subactions )
* [`list-targets` ](#list-targets )
2022-10-07 16:41:51 +02:00
* [Contributing ](#contributing )
2020-10-08 00:52:52 +02:00
## Usage
2024-01-12 14:15:02 +01:00
### Path context
By default, this action will use the local bake definition (`source: .` ), so
you need to use the [`actions/checkout` ](https://github.com/actions/checkout/ )
action to check out the repository.
2020-10-08 00:52:52 +02:00
```yaml
name: ci
2021-04-03 20:37:29 +02:00
2020-10-08 00:52:52 +02:00
on:
push:
2021-04-03 20:37:29 +02:00
branches:
- 'master'
2020-12-23 20:15:23 +01:00
2020-10-08 00:52:52 +02:00
jobs:
bake:
runs-on: ubuntu-latest
steps:
-
name: Checkout
2023-09-12 10:08:58 +02:00
uses: actions/checkout@v4
2020-10-08 00:52:52 +02:00
-
name: Set up Docker Buildx
2023-09-12 10:08:58 +02:00
uses: docker/setup-buildx-action@v3
2020-10-08 00:52:52 +02:00
-
name: Login to DockerHub
2023-09-12 10:08:58 +02:00
uses: docker/login-action@v3
2020-10-08 00:52:52 +02:00
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}
-
name: Build and push
2024-06-17 10:56:19 +02:00
uses: docker/bake-action@v5
2020-10-08 00:52:52 +02:00
with:
2020-12-23 20:15:23 +01:00
push: true
2020-10-08 00:52:52 +02:00
```
2024-01-12 14:15:02 +01:00
### Git context
Git context can be provided using the [`source` input ](#inputs ). This means
that you don't need to use the [`actions/checkout` ](https://github.com/actions/checkout/ )
action to check out the repository as [BuildKit ](https://docs.docker.com/build/buildkit/ )
will do this directly.
```yaml
name: ci
on:
push:
branches:
- 'master'
jobs:
bake:
runs-on: ubuntu-latest
steps:
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
-
name: Login to DockerHub
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}
-
name: Build and push
2024-06-17 10:56:19 +02:00
uses: docker/bake-action@v5
2024-01-12 14:15:02 +01:00
with:
source: "${{ github.server_url }}/${{ github.repository }}.git#${{ github.ref }}"
push: true
```
Be careful because **any file mutation in the steps that precede the build step
will be ignored, including processing of the `.dockerignore` file** since
the context is based on the Git reference. However, you can use the
[Path context ](#path-context ) alongside the [`actions/checkout` ](https://github.com/actions/checkout/ )
action to remove this restriction.
Default Git context can also be provided using the [Handlebars template ](https://handlebarsjs.com/guide/ )
expression `{{defaultContext}}` . Here we can use it to provide a subdirectory
to the default Git context:
```yaml
-
name: Build and push
2024-06-17 10:56:19 +02:00
uses: docker/bake-action@v5
2024-01-12 14:15:02 +01:00
with:
source: "{{defaultContext}}:mysubdir"
push: true
```
2024-04-13 15:20:19 +02:00
Building from the current repository automatically uses the `GITHUB_TOKEN`
secret that GitHub [automatically creates for workflows ](https://docs.github.com/en/actions/security-guides/automatic-token-authentication ),
so you don't need to pass that manually. If you want to authenticate against
another private repository for remote definitions, you can set the
[`BUILDX_BAKE_GIT_AUTH_TOKEN` environment variable ](https://docs.docker.com/build/building/variables/#buildx_bake_git_auth_token ).
> [!NOTE]
> Supported since Buildx 0.14.0
```yaml
-
name: Build and push
2024-06-17 10:56:19 +02:00
uses: docker/bake-action@v5
2024-04-13 15:20:19 +02:00
with:
source: "${{ github.server_url }}/${{ github.repository }}.git#${{ github.ref }}"
push: true
env:
BUILDX_BAKE_GIT_AUTH_TOKEN: ${{ secrets.MYTOKEN }}
```
2024-06-27 12:55:15 +02:00
## Summaries
This action generates a [job summary ](https://github.blog/2022-05-09-supercharging-github-actions-with-job-summaries/ )
that provides a detailed overview of the build execution. The summary shows an
overview of all the steps executed during the build, including the build
inputs, bake definition, and eventual errors.
The summary also includes a link for downloading a build record archive with
additional details about the build execution for all the bake targets,
including build stats, logs, outputs, and more. The build record can be
imported to Docker Desktop for inspecting the build in greater detail.
Summaries are enabled by default, but can be disabled with the
2024-07-02 18:52:07 +02:00
`DOCKER_BUILD_SUMMARY` [environment variable ](#environment-variables ).
2024-06-27 12:55:15 +02:00
For more information about summaries, refer to the
[documentation ](https://docs.docker.com/go/build-summary/ ).
2023-12-19 13:39:15 +01:00
## Customizing
### inputs
2024-01-12 14:15:02 +01:00
The following inputs can be used as `step.with` keys
2023-12-19 13:39:15 +01:00
> `List` type is a newline-delimited string
> ```yaml
> set: target.args.mybuildarg=value
> ```
> ```yaml
> set: |
> target.args.mybuildarg=value
> foo*.args.mybuildarg=value
> ```
> `CSV` type is a comma-delimited string
> ```yaml
> targets: default,release
> ```
2024-04-13 15:20:19 +02:00
| Name | Type | Description |
|----------------|-------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| `builder` | String | Builder instance (see [setup-buildx ](https://github.com/docker/setup-buildx-action ) action) |
| `source` | String | Context to build from. Can be either local (`.` ) or a [remote bake definition ](https://docs.docker.com/build/customize/bake/file-definition/#remote-definition ) |
| `files` | List/CSV | List of [bake definition files ](https://docs.docker.com/build/customize/bake/file-definition/ ) |
| `workdir` | String | Working directory of execution |
| `targets` | List/CSV | List of bake targets (`default` target used if empty) |
| `no-cache` | Bool | Do not use cache when building the image (default `false` ) |
| `pull` | Bool | Always attempt to pull a newer version of the image (default `false` ) |
| `load` | Bool | Load is a shorthand for `--set=*.output=type=docker` (default `false` ) |
| `provenance` | Bool/String | [Provenance ](https://docs.docker.com/build/attestations/slsa-provenance/ ) is a shorthand for `--set=*.attest=type=provenance` |
| `push` | Bool | Push is a shorthand for `--set=*.output=type=registry` (default `false` ) |
| `sbom` | Bool/String | [SBOM ](https://docs.docker.com/build/attestations/sbom/ ) is a shorthand for `--set=*.attest=type=sbom` |
| `set` | List | List of [targets values to override ](https://docs.docker.com/engine/reference/commandline/buildx_bake/#set ) (eg: `targetpattern.key=value` ) |
| `github-token` | String | API token used to authenticate to a Git repository for [remote definitions ](https://docs.docker.com/build/bake/remote-definition/ ) (default `${{ github.token }}` ) |
2023-12-19 13:39:15 +01:00
### outputs
The following outputs are available
| Name | Type | Description |
|------------|------|-----------------------|
| `metadata` | JSON | Build result metadata |
2023-11-09 11:07:49 +01:00
## Subactions
### `list-targets`
This subaction generates a list of Bake targets that can be used in a [GitHub matrix ](https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstrategymatrix ),
so you can distribute your builds across multiple runners.
```hcl
# docker-bake.hcl
group "validate" {
targets = ["lint", "doctoc"]
}
target "lint" {
target = "lint"
}
target "doctoc" {
target = "doctoc"
}
```
```yaml
jobs:
prepare:
runs-on: ubuntu-latest
outputs:
2023-11-17 10:23:20 +01:00
targets: ${{ steps.generate.outputs.targets }}
2023-11-09 11:07:49 +01:00
steps:
-
name: Checkout
uses: actions/checkout@v4
-
2023-11-17 10:23:20 +01:00
name: List targets
id: generate
2023-11-09 11:07:49 +01:00
uses: docker/bake-action/subaction/list-targets@v4
with:
target: validate
validate:
runs-on: ubuntu-latest
needs:
- prepare
strategy:
fail-fast: false
matrix:
target: ${{ fromJson(needs.prepare.outputs.targets) }}
steps:
-
name: Checkout
uses: actions/checkout@v4
-
name: Validate
2024-06-17 10:56:19 +02:00
uses: docker/bake-action@v5
2023-11-09 11:07:49 +01:00
with:
targets: ${{ matrix.target }}
```
2023-11-17 16:09:56 -05:00
#### inputs
| Name | Type | Description |
|--------------|-------------|---------------------------------------------------------------------------------------------------------------------------------------------|
| `workdir` | String | Working directory to use (defaults to `.` ) |
| `files` | List/CSV | List of [bake definition files ](https://docs.docker.com/build/customize/bake/file-definition/ ) |
| `target` | String | The target to use within the bake file |
#### outputs
The following outputs are available
| Name | Type | Description |
|------------|----------|----------------------------|
| `targets` | List/CSV | List of extracted targest |
2023-11-09 11:07:49 +01:00
2024-05-15 09:42:30 +02:00
### environment variables
2024-07-02 18:52:07 +02:00
| Name | Type | Default | Description |
|--------------------------------------|--------|---------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| `DOCKER_BUILD_SUMMARY` | Bool | `true` | If `false` , [build summary ](https://docs.docker.com/build/ci/github-actions/build-summary/ ) generation is disabled |
2024-07-02 19:06:11 +02:00
| `DOCKER_BUILD_RECORD_UPLOAD` | Bool | `true` | If `false` , build record upload as [GitHub artifact ](https://docs.github.com/en/actions/using-workflows/storing-workflow-data-as-artifacts ) is disabled |
2024-07-02 19:07:49 +02:00
| `DOCKER_BUILD_RECORD_RETENTION_DAYS` | Number | | Duration after which build record artifact will expire in days. Defaults to repository/org [retention settings ](https://docs.github.com/en/actions/learn-github-actions/usage-limits-billing-and-administration#artifact-and-log-retention-policy ) if unset or `0` |
2024-05-15 09:42:30 +02:00
2022-10-07 16:41:51 +02:00
## Contributing
2020-10-08 00:52:52 +02:00
2022-10-07 16:41:51 +02:00
Want to contribute? Awesome! You can find information about contributing to
this project in the [CONTRIBUTING.md ](/.github/CONTRIBUTING.md )
