Initial commit

valentindeaconu · valentindeaconu · commit da59e707166b · 2025-01-29T09:47:30.000+02:00
diff --git a/.github/renovate.json5 b/.github/renovate.json5
@@ -0,0 +1,32 @@
+{
+  extends: [
+    "config:base",
+    "schedule:daily",
+  ],
+  commitMessageSuffix: " in {{packageFile}}",
+  dependencyDashboard: false,
+  automerge: true,
+  baseBranches: ["master"],
+  platformAutomerge: true,
+  labels: ["dependencies"],
+  prHourlyLimit: 1,
+  lockFileMaintenance: {
+    enabled: true,
+  },
+  vulnerabilityAlerts: {
+    enabled: true,
+    labels: [
+      "security",
+    ],
+  },
+  regexManagers: [
+    {
+      fileMatch: ["(^|/)Dockerfile$", "(^|/)Dockerfile\\.[^/]*$"],
+      matchStrings: [
+        "renovate: datasource=(?<datasource>.*?) depName=(?<depName>.*?)( versioning=(?<versioning>.*?))?\\sARG .*?_VERSION=(?<currentValue>.*)\\s",
+      ],
+      versioningTemplate: "{{#if versioning}}{{{versioning}}}{{else}}semver{{/if}}",
+      extractVersionTemplate: '^v(?<version>\\d+\\.\\d+\\.\\d+)',
+    },
+  ]
+}
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -0,0 +1,90 @@
+name: Build
+
+on:
+  push:
+    branches:
+      - "master"
+  workflow_dispatch: {}
+
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.head_ref || github.run_id }}
+  cancel-in-progress: true
+
+env:
+  SETUP_BUILDX_VERSION: "edge"
+  REPO_SLUG_TARGET: "sectorlabs/buildkit"
+
+jobs:
+  image:
+    name: Image
+
+    runs-on: ubuntu-24.04
+
+    strategy:
+      fail-fast: false
+      matrix:
+        flavor:
+          - ''
+          - 'rootless'
+
+    permissions:
+      contents: read
+      packages: write
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Login to Packages Container registry
+        uses: docker/login-action@v3
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v3
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+        with:
+          version: ${{ env.SETUP_BUILDX_VERSION }}
+          driver-opts: image=ghcr.io/sectorlabs/buildkit:latest
+
+      - name: Compute BuildKit version
+        run: echo "BUILDKIT_VERSION=$(cat ./Dockerfile | sed -nr 's/ARG BUILDKIT_VERSION=(.*)/\1/p')" >> $GITHUB_ENV
+
+      - name: Build and push
+        uses: docker/build-push-action@v6
+        with:
+          context: .
+          platforms: linux/arm64,linux/amd64
+          push: true
+          tags: |
+            ghcr.io/${{ env.REPO_SLUG_TARGET }}:${{ env.BUILDKIT_VERSION }}
+            ghcr.io/${{ env.REPO_SLUG_TARGET }}:${{ matrix.flavor == '' && 'latest' || 'rootless' }}
+          target: ${{ matrix.flavor }}
+          cache-to: type=gha,mode=max,ignore-error=true
+          cache-from: type=gha
+
+  tag:
+    name: Tag Stable
+
+    runs-on: ubuntu-24.04
+
+    needs: [image]
+
+    permissions:
+      contents: read
+      actions: write
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Dispatch Tag Stable Workflow
+        env:
+          GH_TOKEN: ${{ github.token }}
+        run: |
+          gh workflow run "stable.yml" --ref ${{ github.ref }} -f source-tag=latest -f dest-tag=buildx-stable-1 -f dry-run=false
diff --git a/.github/workflows/stable.yml b/.github/workflows/stable.yml
@@ -0,0 +1,92 @@
+#
+# Modified https://github.com/moby/buildkit/blob/81d49f78197cd471bb92ed800a4873384389bfd4/.github/workflows/buildx-image.yml
+#
+
+# source  latest
+# dest    buildx-stable-1
+# result  ghcr.io/sectorlabs/buildkit:latest   > ghcr.io/sectorlabs/buildkit:buildx-stable-1
+#         ghcr.io/sectorlabs/buildkit:rootless > ghcr.io/sectorlabs/buildkit:buildx-stable-1-rootless
+#
+# source  v0.8.1
+# dest    buildx-stable-1
+# result  ghcr.io/sectorlabs/buildkit:v0.8.1          > ghcr.io/sectorlabs/buildkit:buildx-stable-1
+#         ghcr.io/sectorlabs/buildkit:v0.8.1-rootless > ghcr.io/sectorlabs/buildkit:buildx-stable-1-rootless
+name: Tag stable
+
+on:
+  workflow_dispatch:
+    inputs:
+      source-tag:
+        description: 'BuildKit source Docker tag'
+        required: true
+        default: 'latest'
+      dest-tag:
+        description: 'Default BuildKit Docker tag for buildx'
+        required: true
+        default: 'buildx-stable-1'
+      dry-run:
+        description: 'Dry run'
+        required: false
+        default: 'true'
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.head_ref || github.run_id }}
+  cancel-in-progress: true
+
+permissions:
+  contents: read
+  packages: write
+
+env:
+  SETUP_BUILDX_VERSION: "edge"
+  REPO_SLUG_TARGET: "sectorlabs/buildkit"
+
+jobs:
+  create:
+    name: Create
+
+    runs-on: ubuntu-24.04
+
+    strategy:
+      fail-fast: false
+      matrix:
+        flavor:
+          - ''
+          - 'rootless'
+
+    steps:
+      - name: Login to Packages Container registry
+        uses: docker/login-action@v3
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+        with:
+          version: ${{ env.SETUP_BUILDX_VERSION }}
+          driver-opts: image=ghcr.io/sectorlabs/buildkit:latest
+
+      - name: Create
+        run: |
+          DRYRUN_FLAG=""
+          if [ "${{ github.event.inputs.dry-run }}" = "true" ]; then
+            DRYRUN_FLAG="--dry-run"
+          fi
+
+          SOURCE_TAG="${{ github.event.inputs.source-tag }}"
+          DEST_TAG="${{ github.event.inputs.dest-tag }}"
+          if [ "${{ matrix.flavor }}" != "" ]; then
+            if [ "$SOURCE_TAG" = "latest" ]; then
+              SOURCE_TAG="${{ matrix.flavor }}"
+            else
+              SOURCE_TAG="${SOURCE_TAG}-${{ matrix.flavor }}"
+            fi
+            DEST_TAG="${DEST_TAG}-${{ matrix.flavor }}"
+          fi
+
+          set -x
+          docker buildx imagetools create ${DRYRUN_FLAG} --tag \
+            "ghcr.io/${{ env.REPO_SLUG_TARGET }}:${DEST_TAG}" \
+            "ghcr.io/${{ env.REPO_SLUG_TARGET }}:${SOURCE_TAG}"
diff --git a/Dockerfile b/Dockerfile
@@ -0,0 +1,8 @@
+# syntax=docker/dockerfile:1
+
+# renovate: datasource=github-releases depName=moby/buildkit
+ARG BUILDKIT_VERSION=0.19.0
+
+FROM moby/buildkit:v${BUILDKIT_VERSION}
+
+FROM moby/buildkit:v${BUILDKIT_VERSION}-rootless AS rootless
diff --git a/LICENSE b/LICENSE
diff --git a/README.md b/README.md
