sandbox/.github/workflows/build-container.yml

---
name: 'Build container images'
on:
  push:
    paths:
      - 'container/**'
      - '.github/workflows/build-container.yml'
    tags-ignore:
      - 'eslint-config@v*'
      - 'prettier-config@v*'
  pull_request:
    paths:
      - 'container/**'
      - '.github/workflows/build-container.yml'
  workflow_dispatch:

env:
  REGISTRY: ghcr.io
  IMAGE_NAME: ${{ github.repository }}/lighthouse-ci-server

jobs:
  container-build:
    name: 'Build and publish containers to GitHub Container Registry'
    permissions:
      contents: read
      packages: write
      attestations: write
    runs-on: ubuntu-latest
    steps:
      - name: 'Checkout the repository'
        uses: actions/checkout@v4
      - name: 'Log in to the Container registry'
        uses: docker/login-action@v3.2.0
        with:
          registry: ${{ env.REGISTRY }}
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}
      - name: 'Extract metadata (tags, labels) for Docker'
        id: meta
        uses: docker/metadata-action@v5.5.1
        with:
          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
      - name: 'Build and push Docker image'
        id: push
        uses: docker/build-push-action@v6.2.0
        with:
          context: ${{ github.workspace }}/container/lighthouse-ci-server
          file: ${{ github.workspace }}/container/lighthouse-ci-server/Dockerfile
          push: true
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}