[comment] test comparison pulls

Author: 11notes

.github/workflows/docker.yml

@@ -175,6 +175,11 @@ jobs:
               core.exportVariable('WORKFLOW_CREATE_README', (opt.input?.readme === undefined) ? false : opt.input.readme);
               core.exportVariable('WORKFLOW_GRYPE_FAIL_ON_SEVERITY', (opt.dot?.grype?.fail === undefined) ? true : opt.dot.grype.fail);
               core.exportVariable('WORKFLOW_GRYPE_SEVERITY_CUTOFF', (opt.dot?.grype?.severity || 'high'));
+              if(opt.dot?.readme?.comparison){
+                core.exportVariable('WORKFLOW_CREATE_COMPARISON', true);
+                core.exportVariable('WORKFLOW_CREATE_COMPARISON_FOREIGN_IMAGE', opt.dot.readme.comparison.image);
+                core.exportVariable('WORKFLOW_CREATE_COMPARISON_IMAGE', `${docker.image.name}:${docker.app.version}`);
+              }
 
 
 
@@ -335,9 +340,21 @@ jobs:
       # README
       - name: github / checkout master
         continue-on-error: true
-        run: |         
+        run: |    
+          git pull     
           git checkout master
 
+      - name: docker / setup comparison images
+        if: env.WORKFLOW_CREATE_COMPARISON == 'true'
+        continue-on-error: true
+        run: |    
+          docker image prune -af
+          docker image pull ${{ env.WORKFLOW_CREATE_COMPARISON_IMAGE }}
+          docker image pull ${{ env.WORKFLOW_CREATE_COMPARISON_FOREIGN_IMAGE }}
+          docker image ls &> ./docker.image.ls
+          echo "${PWD}"
+          cat ./docker.image.ls
+
       - name: github / create README.md
         id: github-readme
         continue-on-error: true

.json

@@ -19,6 +19,9 @@
         "11notes/distroless",
         "11notes/distroless:curl"
       ]
+    },
+    "comparison":{
+      "image":"traefik:3.3.5"
     }
   }
 }

project.md

@@ -8,6 +8,7 @@ ${{ github:> }}* This image has no shell since it is 100% distroless, most other
 ${{ github:> }}* This image is created via a secure, pinned CI/CD process and immune to upstream attacks, most other images have upstream dependencies that can be exploited
 ${{ github:> }}* This image contains a proper health check that verifies the app is actually working, most other images have either no health check or only check if a port is open or ping works
 ${{ github:> }}* This image works as read-only, most other images need to write files to the image filesystem
+${{ github:> }}* This image is up to 75% smaller than most other images
 
 If you value security, simplicity and the ability to interact with the maintainer and developer of an image. Using my images is a great start in that direction.