fix: add GH_TOKEN to release workflow and include API build

Author: eldinmiller

.github/workflows/release.yml

@@ -47,8 +47,8 @@ jobs:
 
       - name: Build Electron app
         run: npm run build
-        # Note: Don't pass GH_TOKEN here - it causes electron-builder to auto-publish draft releases
-        # The release job handles publishing after all builds complete
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Upload Windows artifacts
         uses: actions/upload-artifact@v4
@@ -79,8 +79,8 @@ jobs:
 
       - name: Build Electron app
         run: npm run build
-        # Note: Don't pass GH_TOKEN here - it causes electron-builder to auto-publish draft releases
-        # The release job handles publishing after all builds complete
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Upload macOS artifacts
         uses: actions/upload-artifact@v4
@@ -91,26 +91,53 @@ jobs:
             release/latest-mac.yml
           if-no-files-found: warn
 
-  release:
-    needs: [build-windows, build-macos]
+  build-api:
     runs-on: ubuntu-latest
     permissions:
-      contents: write
+      contents: read
+      packages: write
+    env:
+      REGISTRY: ghcr.io
+      IMAGE_NAME: bluerobotics/blueplm-api
     steps:
-      - name: Checkout
+      - name: Checkout repository
         uses: actions/checkout@v4
 
-      - name: Download Windows artifacts
-        uses: actions/download-artifact@v4
+      - name: Log in to Container Registry
+        uses: docker/login-action@v3
         with:
-          name: windows-build
-          path: dist/windows
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
 
-      - name: Download macOS artifacts
-        uses: actions/download-artifact@v4
+      - name: Extract metadata
+        id: meta
+        uses: docker/metadata-action@v5
         with:
-          name: macos-build
-          path: dist/macos
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+          tags: |
+            type=raw,value=latest
+            type=sha,prefix=
+            type=ref,event=tag
+
+      - name: Build and push Docker image
+        uses: docker/build-push-action@v5
+        with:
+          context: .
+          file: ./api/Dockerfile
+          push: true
+          no-cache: true
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
+
+  update-release:
+    needs: [build-windows, build-macos, build-api]
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
 
       - name: Get version from tag
         id: get_version
@@ -120,24 +147,16 @@ jobs:
         id: changelog
         run: |
           VERSION="${GITHUB_REF#refs/tags/v}"
-          # Extract the section for this version from CHANGELOG.md
-          # Finds content between ## [VERSION] and the next ## [ or end of file
           CHANGELOG=$(awk "/^## \[${VERSION}\]/{flag=1; next} /^## \[/{flag=0} flag" CHANGELOG.md)
-          # Handle multi-line output for GitHub Actions
           echo "CHANGELOG<<EOF" >> $GITHUB_OUTPUT
           echo "$CHANGELOG" >> $GITHUB_OUTPUT
           echo "EOF" >> $GITHUB_OUTPUT
 
-      - name: Create Release
+      - name: Update release with changelog
         uses: softprops/action-gh-release@v1
         with:
           name: ${{ steps.get_version.outputs.VERSION }}
           body: ${{ steps.changelog.outputs.CHANGELOG }}
           draft: false
-          prerelease: false
-          files: |
-            dist/windows/*
-            dist/macos/*
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-