From d22e6d658db478ccffd5d02e923e887d009770b5 Mon Sep 17 00:00:00 2001 From: Zach Kelling Date: Thu, 23 Apr 2026 18:10:42 -0700 Subject: [PATCH] ci: migrate image job to canonical docker-build reusable workflow Keep pnpm ci job (typecheck + build), replace bespoke docker build with the canonical caller: hanzoai/.github/.github/workflows/docker-build.yml@main. ci job runs on hanzo-build-linux-amd64 ARC runner (no GitHub-hosted). docker job: native amd64+arm64, semver + branch tags, multi-arch manifest. --- .github/workflows/build.yml | 32 ++++++++++---------------------- 1 file changed, 10 insertions(+), 22 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index badcb06..b9a8381 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -5,9 +5,13 @@ on: branches: [main] pull_request: +permissions: + contents: read + packages: write + jobs: ci: - runs-on: ubuntu-latest + runs-on: hanzo-build-linux-amd64 steps: - uses: actions/checkout@v4 - uses: pnpm/action-setup@v4 @@ -20,26 +24,10 @@ jobs: - run: pnpm typecheck - run: pnpm build - image: + docker: needs: ci if: github.event_name == 'push' && github.ref == 'refs/heads/main' - runs-on: ubuntu-latest - permissions: - contents: read - packages: write - steps: - - uses: actions/checkout@v4 - - uses: docker/setup-buildx-action@v3 - - uses: docker/login-action@v3 - with: - registry: ghcr.io - username: ${{ github.actor }} - password: ${{ secrets.GITHUB_TOKEN }} - - uses: docker/build-push-action@v6 - with: - context: . - platforms: linux/amd64,linux/arm64 - push: true - tags: | - ghcr.io/zooai/cloud:latest - ghcr.io/zooai/cloud:${{ github.sha }} + uses: hanzoai/.github/.github/workflows/docker-build.yml@main + with: + image: ghcr.io/zooai/cloud + secrets: inherit