add build depot

allardy · allardy · commit bcbe9c089226 · 2025-04-24T14:29:30.000-04:00
diff --git a/build/depot/action.yml b/build/depot/action.yml
@@ -0,0 +1,103 @@
+name: Docker Build using Depot
+
+inputs:
+  # Build
+  context:
+    description: 'Docker context for the build'
+    required: false
+    default: '.'
+  dockerfile:
+    description: 'Path to Dockerfile'
+    required: false
+    default: 'Dockerfile'
+  push:
+    description: 'Whether to push the image to the registry'
+    required: true
+    default: 'true'
+  tag:
+    description: 'Optional Docker tag'
+    required: false
+    default: ''
+
+  # Custom variables
+  sentry-auth-token:
+    description: 'Auth token for sentry (optional)'
+    required: false
+  minify:
+    description: 'Whether to minify the build'
+    required: false
+    default: true
+
+  # Deploy
+  repository:
+    description: 'Name of the ECR repository'
+    required: true
+  aws-role:
+    description: 'AWS Role to assume'
+    required: true
+    default: arn:aws:iam::986677156374:role/actions/build/container_pusher
+  aws-region:
+    description: 'AWS Region'
+    required: true
+    default: us-east-1
+
+runs:
+  using: 'composite'
+  steps:
+    - uses: aws-actions/configure-aws-credentials@v3
+      with:
+        role-session-name: container_pusher
+        role-to-assume: ${{ inputs.aws-role }}
+        aws-region: ${{ inputs.aws-region }}
+
+    - uses: aws-actions/amazon-ecr-login@v1
+      id: ecr
+      with:
+        mask-password: true
+
+    - uses: docker/metadata-action@v4
+      id: meta
+      with:
+        images: ${{ steps.ecr.outputs.registry }}/${{ inputs.repository }}
+        flavor: |
+          latest=false
+        tags: |
+          type=raw,enable=${{ inputs.tag != '' }},value=${{ inputs.tag }}
+          type=semver,pattern={{version}}
+          type=sha,enable=${{ !startsWith(github.ref, 'refs/tags') }},prefix=,format=long
+
+    - name: Set BUILD_DATE
+      id: meta_date
+      shell: bash
+      run: |
+        export TZ=America/Toronto
+        echo "timestamp=$(date +"%Y-%m-%d %H:%M:%S")" >> "$GITHUB_OUTPUT"
+
+    - name: Create ECR Registry
+      shell: bash
+      env:
+        ECR_REPOSITORY: ${{ inputs.repository }}
+        ECR_REGISTRY: ${{ steps.ecr.outputs.registry }}
+      run: |
+        aws --version
+        aws ecr create-repository --repository-name $ECR_REPOSITORY || true
+        aws ssm get-parameter --name '/cloud/container-registry/ecr-policy-document' --query 'Parameter.Value' | jq -r > repository-policy.json
+        aws ecr set-repository-policy --repository-name $ECR_REPOSITORY --policy-text file://repository-policy.json &> /dev/null
+
+    - name: Set up Depot CLI
+      uses: depot/setup-action@v1
+
+    - uses: depot/build-push-action@v1
+      with:
+        build-args: |
+          SENTRY_AUTH_TOKEN=${{ inputs.sentry-auth-token }}
+          SENTRY_ORGANIZATION_SLUG=botpress-rm
+          SENTRY_RELEASE=${{ github.sha }}
+          MINIFY=${{ inputs.minify }}
+          DOCKER_TAG=${{ inputs.tag }}
+          BUILD_DATE=${{ steps.meta_date.outputs.timestamp }}
+        file: ${{ inputs.dockerfile }}
+        context: ${{ inputs.context }}
+        push: ${{ inputs.push }}
+        tags: ${{ steps.meta.outputs.tags }}
+        labels: ${{ steps.meta.outputs.labels }}
diff --git a/build/docker/action.yml b/build/docker/action.yml
@@ -1,21 +1,37 @@
 name: Docker to ECR
 description: Push Docker image to ECR
 inputs:
-  push:
-    description: 'Push to registry'
-    required: true
-    default: 'true'
-  repository:
-    description: 'Repository name'
-    required: true
+  # Build
   context:
     description: 'Docker context for the build'
-    required: true
+    required: false
     default: '.'
   dockerfile:
     description: 'Path to Dockerfile'
+    required: false
+    default: 'Dockerfile'
+  push:
+    description: 'Whether to push the image to the registry'
     required: true
+    default: 'true'
+  tag:
+    description: 'Optional Docker tag'
+    required: false
     default: ''
+
+  # Custom variables
+  sentry-auth-token:
+    description: 'Auth token for sentry (optional)'
+    required: false
+  minify:
+    description: 'Whether to minify the build'
+    required: false
+    default: true
+
+  # Deploy
+  repository:
+    description: 'Name of the ECR repository'
+    required: true
   aws-role:
     description: 'AWS Role to assume'
     required: true
@@ -24,10 +40,6 @@ inputs:
     description: 'AWS Region'
     required: true
     default: us-east-1
-  tag:
-    description: 'Optional Docker tag'
-    required: false
-    default: ''
 
 runs:
   using: 'composite'
@@ -42,6 +54,8 @@ runs:
 
     - uses: aws-actions/amazon-ecr-login@v1
       id: ecr
+      with:
+        mask-password: true
 
     - uses: docker/metadata-action@v4
       id: meta
@@ -76,13 +90,17 @@ runs:
       env:
         DOCKER_BUILDKIT: '1'
       with:
-        context: ${{ inputs.context }}
+        build-args: |
+          SENTRY_AUTH_TOKEN=${{ inputs.sentry-auth-token }}
+          SENTRY_ORGANIZATION_SLUG=botpress-rm
+          SENTRY_RELEASE=${{ github.sha }}
+          MINIFY=${{ inputs.minify }}
+          DOCKER_TAG=${{ inputs.tag }}
+          BUILD_DATE=${{ steps.meta_date.outputs.timestamp }}
         file: ${{ inputs.dockerfile }}
+        context: ${{ inputs.context }}
         push: ${{ inputs.push }}
         cache-from: type=gha
         cache-to: type=gha,mode=max
         tags: ${{ steps.meta.outputs.tags }}
         labels: ${{ steps.meta.outputs.labels }}
-        build-args: |
-          DOCKER_TAG=${{ inputs.tag }}
-          BUILD_DATE=${{ steps.meta_date.outputs.timestamp }}
