A common workflow consists of using GitHub Actions to build a Docker image and then push it to Docker Hub.
See also the post on pushing to Docker Hub from GitLab CI.
Docker Image
We’re not concerned about the Docker image itself, so let’s keep that simple. Our Dockerfile simply inherits from the mysql base image.
FROM mysql:8.2.0
Actions
Okay, now we need to set things up so that the image will build and push automatically to Docker Hub each time that we push a new commit on the master branch. Create a .github/workflows/build.yml that looks like this:
name: Build & Push Docker Image
on:
push:
branches:
- "master"
jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: docker/setup-buildx-action@v3
- uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_PASSWORD }}
- uses: docker/build-push-action@v5
with:
context: .
push: true
tags: >
${{ secrets.DOCKERHUB_USERNAME }}/${{ github.event.repository.name }}:${{ github.sha }},
${{ secrets.DOCKERHUB_USERNAME }}/${{ github.event.repository.name }}:latest
There are a few important steps in the pipeline:
actions/checkout— Checkout the repository.docker/setup-buildx-action— Set up the Docker Buildx environment.docker/login-action— Login to Docker Hub. You need to provide a username and password, which I’m accessing from repository secrets.docker/build-push-action— This does the heavy lifting: building the image and pushing to Docker Hub. Setting uptagscorrectly is important. I’m tagging the latest image with bothlatestand the commit SHA.
You can either hard-code the name of the image or use the repository name. I’m adopting the latter approach and getting the repository name via ${{ github.event.repository.name }}.
You will probably want to generate an unique tag for each build. In the YAML above I’ve used the commit SHA via ${{ github.sha }}. Another option might be ${{ github.run_number }}.
Troubleshooting
insufficient_scope: authorization failed error?datawookie/test and not just test.