From cf5137c176f8ce6c247f130c39c884caed885271 Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Fri, 23 Jan 2026 11:11:33 +0000 Subject: [PATCH 1/4] Initial plan From 460c8b2d25ac062590857f7745825d7ef9e503b5 Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Fri, 23 Jan 2026 11:13:29 +0000 Subject: [PATCH 2/4] Update GitHub workflow with security and performance improvements Co-authored-by: dominikbayerl <94067762+dominikbayerl@users.noreply.github.com> --- .github/workflows/build.yaml | 23 ++++++++++------------- 1 file changed, 10 insertions(+), 13 deletions(-) diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml index 0d5d9e2..20bfa44 100644 --- a/.github/workflows/build.yaml +++ b/.github/workflows/build.yaml @@ -6,6 +6,10 @@ on: - "main" workflow_dispatch: +permissions: + contents: read + packages: write + env: REGISTRY: ghcr.io IMAGE_REPO: ${{ github.repository }} @@ -19,16 +23,9 @@ jobs: with: submodules: 'recursive' - name: Set up QEMU - uses: docker/setup-qemu-action@v1 + uses: docker/setup-qemu-action@v3 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 - - name: Cache Docker layers - uses: actions/cache@v4 - with: - path: /tmp/.buildx-cache - key: ${{ runner.os }}-buildx-${{ github.sha }} - restore-keys: | - ${{ runner.os }}-buildx- + uses: docker/setup-buildx-action@v3 - name: Login to Docker Hub uses: docker/login-action@v3 with: @@ -36,12 +33,12 @@ jobs: username: ${{ github.repository_owner }} password: ${{ secrets.GITHUB_TOKEN }} - name: Build and push - uses: docker/build-push-action@v2 + uses: docker/build-push-action@v6 with: context: . file: ./Dockerfile push: true tags: ${{ env.REGISTRY }}/${{ env.IMAGE_REPO }}:latest - platforms: linux/arm64/v8 - cache-from: type=local,src=/tmp/.buildx-cache - cache-to: type=local,dest=/tmp/.buildx-cache + platforms: linux/amd64,linux/arm64/v8 + cache-from: type=gha + cache-to: type=gha,mode=max From e38ee15f0de5073f8b4857fecfc0dfc817d45b8d Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Fri, 23 Jan 2026 11:14:20 +0000 Subject: [PATCH 3/4] Fix step name and platform specification Co-authored-by: dominikbayerl <94067762+dominikbayerl@users.noreply.github.com> --- .github/workflows/build.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml index 20bfa44..7f527c0 100644 --- a/.github/workflows/build.yaml +++ b/.github/workflows/build.yaml @@ -26,7 +26,7 @@ jobs: uses: docker/setup-qemu-action@v3 - name: Set up Docker Buildx uses: docker/setup-buildx-action@v3 - - name: Login to Docker Hub + - name: Login to GitHub Container Registry uses: docker/login-action@v3 with: registry: ${{ env.REGISTRY }} @@ -39,6 +39,6 @@ jobs: file: ./Dockerfile push: true tags: ${{ env.REGISTRY }}/${{ env.IMAGE_REPO }}:latest - platforms: linux/amd64,linux/arm64/v8 + platforms: linux/amd64,linux/arm64 cache-from: type=gha cache-to: type=gha,mode=max From 2c09d566287c02952549b69b77bace09ede9455a Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Fri, 23 Jan 2026 11:21:35 +0000 Subject: [PATCH 4/4] Remove amd64 platform, keep only arm64 as intended Co-authored-by: dominikbayerl <94067762+dominikbayerl@users.noreply.github.com> --- .github/workflows/build.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml index 7f527c0..084623f 100644 --- a/.github/workflows/build.yaml +++ b/.github/workflows/build.yaml @@ -39,6 +39,6 @@ jobs: file: ./Dockerfile push: true tags: ${{ env.REGISTRY }}/${{ env.IMAGE_REPO }}:latest - platforms: linux/amd64,linux/arm64 + platforms: linux/arm64 cache-from: type=gha cache-to: type=gha,mode=max