Skip to content

Add CI Docker build verification job in main CI workflow#407

Merged
DennisOSRM merged 3 commits into
gh-pagesfrom
copilot/verify-docker-environment-builds
Apr 11, 2026
Merged

Add CI Docker build verification job in main CI workflow#407
DennisOSRM merged 3 commits into
gh-pagesfrom
copilot/verify-docker-environment-builds

Conversation

Copy link
Copy Markdown
Contributor

Copilot AI commented Apr 11, 2026

This updates CI to fail fast when the Docker environment becomes non-buildable. The workflow now validates the Docker build path used by the project without publishing artifacts.

  • Workflow scope

    • Extended .github/workflows/ci.yml with a dedicated docker-build-check job on the existing push/pull_request triggers (main, gh-pages).

  • Docker build verification

    • Added a non-push build step that exercises docker/Dockerfile directly:
    docker-build-check:
  runs-on: ubuntu-latest
  steps:
    - uses: actions/checkout@v4
    - name: Build Docker image
      run: docker build -f docker/Dockerfile .

  • Workflow security hardening

    • Added explicit minimal token permissions at workflow level:
    permissions:
  contents: read

Copilot AI and others added 3 commits April 11, 2026 07:04
@DennisOSRM
Plan: add CI docker build verification job
41ab392 
Agent-Logs-Url: https://github.com/Project-OSRM/osrm-frontend/sessions/1c760f06-77e7-46bf-9826-dfb5784454ab

Co-authored-by: DennisOSRM <1067895+DennisOSRM@users.noreply.github.com>
@DennisOSRM
Add CI docker build verification job
d488ac4 
Agent-Logs-Url: https://github.com/Project-OSRM/osrm-frontend/sessions/1c760f06-77e7-46bf-9826-dfb5784454ab

Co-authored-by: DennisOSRM <1067895+DennisOSRM@users.noreply.github.com>
@DennisOSRM
Set minimal CI workflow permissions
21d6a31 
Agent-Logs-Url: https://github.com/Project-OSRM/osrm-frontend/sessions/1c760f06-77e7-46bf-9826-dfb5784454ab

Co-authored-by: DennisOSRM <1067895+DennisOSRM@users.noreply.github.com>
@DennisOSRM DennisOSRM marked this pull request as ready for review April 11, 2026 07:11
Copilot AI review requested due to automatic review settings April 11, 2026 07:11
Copilot AI reviewed Apr 11, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR strengthens the existing CI pipeline by adding a lightweight Docker build verification job to ensure the repository’s docker/Dockerfile remains buildable, and by explicitly restricting GitHub token permissions to read-only for improved workflow security.

Changes:

  • Added workflow-level minimal permissions (contents: read).
  • Added a new docker-build-check job that runs docker build -f docker/Dockerfile . on push/pull_request to main and gh-pages.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@DennisOSRM DennisOSRM merged commit a4395b1 into gh-pages Apr 11, 2026
8 checks passed
@DennisOSRM DennisOSRM deleted the copilot/verify-docker-environment-builds branch April 11, 2026 07:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

+1 more reviewer

@DennisOSRM DennisOSRM DennisOSRM approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@DennisOSRM DennisOSRM

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@DennisOSRM